LeaViljanen

How hard is it to detect Heartbleed, really?

I'm asking this considering the information on http://www.hut3.net/blog/cns---networks-security/2014/04/14/bugs-in-heartbleed-detection-scripts-

Some efforts have been mentioned here already, here's another one: foilChat

You've said that the newly discovered government-backed malware Regin is the biggest security news of 2014.

In what way does Regin deserve that label? Isn't government-backed malware old news? Or are there so interesting technical security tricks in Regin?