In 2014, the "Heartbleed" vulnerability was discovered in the
popular OpenSSL cryptographic software library. A missing bounds-check
in the code caused 1% of the world's websites to be vulnerable to an exploit
that allowed an attacker to read large chunks of memory on the server.