Friday, April 11, 2014

Heartbleed Bug Trespasses OpenSSL® Security Hole
April 11, 2014: You may have heard about the Heartbleed bug that has placed Internet security at risk worldwide. Security experts recently discovered the bug, which bypasses the encryption protections provided by the widely used OpenSSL® cryptographic library. Version 1.0.1 and beta 1.0.2 releases are vulnerable to Heartbleed, which creates an opening in the encryption technology. This security breach allows private information, such as credit card numbers and passwords, to be accessed unknowingly. To stop this intrusion, website administrators must implement a fix to protect its users.
I’m pleased to report that Heartbleed did not breach any of our systems. Upon its report, our security experts immediately began a thorough examination into our systems. Fortunately, there was no breach in any of our sites. Since then, we have implemented protective measures to prevent any future access attempts by Heartbleed so our users and their information remain well secured.
So what can you do to help protect yourself? Changing your passwords is ultimately needed, but don’t do this until the affected sites have fixed the vulnerability. It’s also up to Internet services affected by the bug to inform users of potential risks and encourage them to change their passwords.
If you can’t seem to remember all your passwords, then consider using a password manager program. There are some good products available, but My Logon Manager works very well and is easy to use. Check it out at www.MyLogon.com.