The Web infrastructure company’s patch was supposed to have handled the problem. Turns out it protects only three of six critical encryption values.
Akamai, the network provider that handles nearly one-third of the Internet’s traffic, released a Heartbleed patch to the community on Friday, saying that it would protect against the critical Web threat. Now it appears that’s not the case.
Writing on his company’s blog Sunday night, Akamai chief security officer Andy Ellis said that while he had believed the Akamai Heartbleed patch fully fixed the issue, a security researcher discovered it had a bug that caused it to be a partial, not full, patch.