General Discussion
Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region ForumsThe Heartbleed Hit List: The Passwords You Need to Change Right Now
An encryption flaw called the Heartbleed bug is already being called one of the biggest security threats the Internet has ever seen. The bug has affected many popular websites and services ones you might use every day, like Gmail and Facebook and could have quietly exposed your sensitive account information (such as passwords and credit card numbers) over the past two years.
But it hasn't always been clear which sites have been affected. Mashable reached out some of the most popular social, email, banking and commerce sites on the web. We've rounded up their responses below.
Some Internet companies that were vulnerable to the bug have already updated their servers with a security patch to fix the issue. This means you'll need to go in and change your passwords immediately for these sites. Even that is no guarantee that your information wasn't already compromised, but there's also no indication that hackers knew about the exploit before this week. The companies that are advising customers to change their passwords are doing so as a precautionary measure.
Although changing your password regularly is always good practice, if a site or service hasn't yet patched the problem, your information will still be vulnerable.
http://mashable.com/2014/04/09/heartbleed-bug-websites-affected/
Staph
(6,251 posts)It looks like I'm in the clear. I don't use most of the sites that use or used OpenSSL. Thank heavens for my Luddite tendencies -- I'm not on social media!
NuclearDem
(16,184 posts)Thanks for this.
steve2470
(37,457 posts)DeSwiss
(27,137 posts)Denzil_DC
(7,227 posts)for reassurance.
alittlelark
(18,890 posts)Thank You !
Lugnut
(9,791 posts)I had to reset that one. My credit union called to let me know that somebody tried to use my debit card to make a $258 purchase but they denied it. I was told it didn't fit my typical use pattern so they spragged it. They didn't say where it was trying to be used but I would very rarely make a transaction for that much. I'm thrilled that they were on the ball.
The local newspaper reported that state police here have been inundated with complaints from residents about unauthorized charges to their credit card accounts.
Raksha
(7,167 posts)Egnever
(21,506 posts)Not only is it good for keeping your passwords but it will look at all of the sites it has saved logins for you and let you know if they are affected.
This is what mine looked like.
Site Age of Password Updated Cert? Action
box.com 2 years YES (5 days ago) Go update!
dropbox.com 2 years YES (1 day ago) Go update!
facebook.com 2 years YES (1 month ago)Go update!
google.com 1 year YES (1 week ago) Go update!
netflix.com 2 years YES (2 days ago) Go update!