known about it, that everyone the nsa has noknown about it but chose t to inform anybody which sundis understandableut it's important to understand how it hurts us. you and i, we go on the internet and we use a password. and you connect to a vendor. and you set up this secure pipe, this communication. and you're talking back and forth. and you're transmitting data and using a password to do that pap that is a secure pipe that is encrypted. who hole in the internet permits somebody who knows about it to go in and understand that conversation, steal your password. so it's pretty serious and it's probably considered the most serious widespread vulnerability we've had. >> can anybody stand to ignore the bug? a lot of times map users are somehow protected. >> we're all exposed. currently open source or rather open ssl, about 66% of the internet uses it. from what i understand and i've talked to some experts in the field, about 70% is vulnerable. but even government organizations, those that secure the fbi, use ssl. >> so is it as easy as changing all your passwords? >> that's the first step and we've all