What you need to know about Heartbleed

HEARTBLEED

Recently, a major security vulnerability named "Heartbleed" has made headlines around the world. This is a severe vulnerability stemming from a coding mistake in a widely-used security utility called OpenSSL.

The bug affects the encryption technology designed to protect your sensitive data on the Internet, like usernames, passwords and emails.

This is a flaw in the OpenSSL encryption code, not a virus that can be stopped by McAfee or other consumer security software. Because this vulnerability takes advantage of servers, and not consumer devices, businesses need to update to the latest version of OpenSSL to mitigate and address the dangers posed.

If we are Your-Web-Guys, then you have little to worry about concerning your own website.  Our systems were never vulnerable to Heartbleed in the first place because our servers run on the freeBSD operating system rather than linux or unix or other OS's.  freeBSD runs the OpenSSL 0.9.8 branch which is not vulnerable to Heartbleed.  However, that does not mean that you have nothing to worry about in regards to your personal activity on other websites.

The severity of the Heartbleed vulnerability cannot be overstated: several major enterprises use OpenSSL, and are likely affected by this vulnerability as well. The dangers posed by this vulnerability are very real and could affect you if exploited.

So what do you need to do?

  • Right now, the best thing you can do is wait to be notified about affected services and patches or you can investigate this list provided by Mashable that has some well known brands listed.
  • If you'd like to investigate whether or not a website you frequent has been affected, you can use this tool.
  • Reset your password for every online service affected by Heartbleed. But beware:you should only change your password after the afflicted business has fixed its servers to remove the Heartbleed vulnerability. Changing your passwords before a company's servers are updated will not protect your credentials from being leaked.

 

Leave a Reply

Your email address will not be published. Required fields are marked *

Blog Categories

Newsletter

Subscribe to our Newsletter

To subscribe to our dandy newsletter simply add your email below. A confirmation email will be sent to you!

Testimonials

Very good first impression followed by a clean site and helpful support. Richard continues to be informative and adaptive to our wants and to tend to our needs. I believe in the weeks to follow we’ll meet our goals, then exceed them.

When the site crashed this afternoon (as all websites occasionally do), my phone call was answered outside regular business hours. They were already aware of the problem and were working on it. The site was down for a little over half an hour– not a bad response time imo.

And it has nothing to do with their competence or professionalism, but their office building is very zen

I have worked with several different web design companies just because of the line of work I am in, I can say without a doubt that YourWebGuys is the best! I have been working with them now for well over a year and have never second guessed their ideas, motive for the betterment of the company I work for, nor their pricing!

If I call Richard, he answers directly. And if I do have to leave a message, I get a callback within the day. An email sent to support is answered within hours!

I have learned so much from his team, and look forward to working with them for many more years.

When the Mansfield ISD Education Foundation needed a fast turn-around and professional service Your-Web-Guys delivered!! Your-Web-Guys helped our foundation design and launch a new and creative way for our parents and community to help us fund more terrific projects and get much needed resources into our classrooms to benefit children! This dynamic addition to our website seemed imposssible at first, but Your-Web-Guys made it a reality and now anyone in our community or the world can donate or contribute towards our innovative teaching grants. We agree that there are many other website design companies out there but we strongly recommend Your-Web-Guys for your website design and implementation.

I have found Your-Web-Guys to be professional, creative and very, very accessible when it comes to making sure my website is functioning just as it should. I strongly recommend this company for your website design and implementation.

There are many other website design companies out there and they promise a lot. But after talking with some of them I understood that their objectives did not include taking care of, or focusing on, small business. In contrast to that, I’ve found Your-Web-Guys to be geared to work with small and growing businesses

Ed Harrison

We needed a bold, effective and usable web page that attracted the customers we were seeking for our wedding and events venue. The process was easy and flexible and Your-Web-Guys was outstanding.

They were very knowledgeable and extremely patient. We have used web designers in the past, but Your-Web-Guys will be our designers from now on. And the page was done ON TIME!

Your-Web-Guys carefully listened to our corporation representatives as we discussed every element that we needed to incorporate into a web site. We had used other web designers, but none ever addressed future as well as present needs.

Your-Web-Guys accomplished a very successful design and we were VERY pleased with our experience and the end result.

Love Story Corporation