Now You Know
April 10, 2014

Starting Monday, the internet-connected world was introduced to a new bug, colorfully named Heartbleed, that has exposed about two-thirds of web servers — and probably about a quarter of all sites — to potential pilfering of sensitive, supposedly encrypted information: passwords, credit card numbers, etc. Google engineers discovered the bug last week in the OpenSSL encryption software, then quietly notified OpenSSL, which started secretly helping companies patch the bug before going public amid fears that hackers had discovered the hole, too.

How big of a deal is Heartbleed? "It's easily the worst vulnerability since mass-adoption of the internet," Matthew Prince, CEO of cybersecurity firm CloudFlare Inc., tells The Wall Street Journal. "It's going to be really bad."

How bad? "We don't know to what extent this flaw has been targeted by hackers, we are in the dark here about the extent of how it is been used," David Emm, senior security researcher at Kaspersky Lab, tells CNBC. "We can't quantify the scale of the damage."

So, what can you do about it? Unless you're an IT person at a bank or social media service or other websites that relies on OpenSSL encryption, not a whole lot. Those companies have to update their encryption — a process that involves more than just affixing the OpenSSL patch.

Once a vulnerable site is secure again, you should change your password. Seriously, change it. If a site hasn't fixed the encryption problem, changing your password is useless, or worse.

How can you tell? CNET has a list of popular sites and their Heartbleed status. And a company called LastPass has a useful tool where you can enter any website and it will tell you its vulnerability and advise you what to do. For more information about Heartbleed, here's a brief report from CNBC. Good luck. --Peter Weber

a feast fit for a president
12:51 p.m. ET

We know President Obama doesn't mess around when it comes to pie, so it should really come as no surprise that the White House's Thanksgiving menu offers six of them. Yes, the Obamas see your standard pumpkin and pecan pies and would like to raise you a banana cream:

On top of the generous pie options, the presidential feast will feature three different main dishes — turkey, ham, and prime rib — and myriad sides. Here's hoping Obama's turkey day suit comes complete with Thanksgiving pants. Kimberly Alters

happy thanksgiving!
12:04 p.m. ET

With the 89th Macy's Thanksgiving Day Parade expecting a crowd of about 3 million spectators, the annual procession was always going to be a big deal. A record 2,500 police officers were stationed along the Manhattan parade route in light of recent, heightened fears of terrorism — though officials have said there are no known, credible threats to New York — as the city prepared for the larger-than-life gathering. Below, photos from the festivities, including some cartoon favorites inflated to a truly terrifying scale. Kimberly Alters

turkey travels
11:38 a.m. ET

If you traveled this Thanksgiving, you know how cutthroat holiday hotel reservations can be. Or maybe over-crowded gatherings at home have you outsourcing to a local hotel. In any case, finding lodging for friends and family can be a certified headache.

Not so for the turkeys chosen for the White House's annual turkey pardon. National Journal accompanied last year's lucky birds, Mac and Cheese, into their swanky hotel suite at the Willard InterContinental Hotel in Washington, D.C., where the two turkeys had their own room:

Mac and Cheese's digs go for more than $350 a night for non-presidentially pardoned guests, and come with stellar city views. The hotel did add a "thick layer of wood shavings" in the entryway specially for the birds, though. See more photos of the luxurious lodging for pardoned turkeys at National Journal. Kimberly Alters

where is the un-send button
10:41 a.m. ET

Ah, Thanksgiving, a day for packing in as much poultry and pigskin as possible. And given the holiday's proclivity for football, NFL teams have a natural incentive to spread the good cheer on turkey day.

If you're the Washington Redskins though, you might want to stay mum on a holiday that traces its roots back to America's takeover of Native American land. The D.C. football team has been embroiled in controversy over its team name — an offensive word for Native Americans — for years. (If you're unclear as to why the name is offensive, this Daily Show segment can get you up to speed.) But rather than miss out on the holiday fun, the team's official Twitter account posted this glaringly oblivious graphic:

At least you can be thankful the Redskins aren't playing today, so their controversial brand won't add to your surely contentious Thanksgiving discussions. Kimberly Alters

feel the bern
10:37 a.m. ET
Mark Wilson/Getty Images

Sen. Bernie Sanders' presidential campaign has focused on his ambitious plans to, as a recent press release summarized, "create millions of jobs, raise wages, provide health care for all Americans, lower skyrocketing prescription drug prices, make college affordable, guarantee paid family leave, ensure pay equity for women and strengthen Social Security."

That's a tall order — and the automatic spam filters in Gmail, America's most popular email service, evidently think it's a little too good to be true.

(Washington Times)

Some Gmail users received the Sanders press release with an automated phishing warning, cautioning readers that Sanders' campaign goals could be a scam designed to trick them into sharing personal data. The email's use of words like "prescription drugs," "guarantee," "free," and "health care" — common phrases in the spammer vocabulary — are likely what attracted the filter's attention. Bonnie Kristian

poultry, not politics
10:23 a.m. ET

In his Thanksgiving-themed episode of The Late Show on Wednesday, host Stephen Colbert made an impassioned plea to keep politics out of Thanksgiving.

Even a "harmless gesture of goodwill" like the presidential turkey pardon "is pitting people against each other," he said, citing real poll results which found that 59 percent of Democrats approve of President Obama's turkey pardon — and just 11 percent of Republicans say the same.

This year, as usual, there are a litany of guides available for how to argue politics at the Thanksgiving table, from the DNC's passive-aggressive comebacks at to Politico Magazine's delightfully satirical ideas for being the crazy uncle.

But if you're more of the Colbert persuasion, check out the case against talking politics at Thanksgiving by The Week's own Michael Brendan Dougherty here. Bonnie Kristian

mcdonald shooting
8:53 a.m. ET

Following the release of a video showing the fatal officer-involved shooting of a black teenager, hundreds of protesters took to the streets of Chicago on Tuesday night. Some shouted "16 shots," referring to the number of bullets allegedly fired during the Oct. 20, 2014, shooting of 17-year-old Laquan McDonald by white Chicago police officer Jason Van Dyke. The protests continued Wednesday in Chicago's business district, The Loop, as demonstrators peacefully chanted and marched through the area.

New footage of the shooting was released Wednesday from the dashboard cameras of four additional police cars that responded to the incident, including Van Dyke's vehicle. That brings the total number of clips released to five, with footage from the three other squad cars that were at the scene during the shooting yet to be released.

The videos in question have little audio, something the Chicago Tribune notes should not be the case; while some videos include siren sounds from outside the vehicle, no sound of officers talking or any radio communication inside the vehicle can be heard. Only one of the videos shows the actual shooting of McDonald, while the others show the scene at various points. Van Dyke was charged with first-degree murder Tuesday. Kimberly Alters

See More Speed Reads