Heartbleed OpenSSL Exploit

On April 7, 2014 the OpenSSL project released information about a security vulnerability in OpenSSL, named Heartbleed.

[youtube clipid=”rE5dW3BTpn4″ autoplay=”0″]

What is Heartbleed?

In summary, Heartbleed is a vulnerability in the technology many sites on the internet use to keep your data safe as it moves between your computer and their website.

It affected two thirds of the websites we visit every day, including sites like Google, Yahoo, Amazon, Etsy, Tumblr, etc. Unfortunately, that includes FreshSites because we use OpenSSL to provide secure hosting to some clients.

How does this affect me?

We have no evidence that this vulnerability was used to attack FreshSites, or the data we store. We immediately took the required steps to patch this vulnerability and ensure your data is safe.

It is recommended that you change your password for online services such as banking or those mentioned above, as these may have been compromised before the exploit was made public.

You can change your FreshSites Password here: https://freshsites.co.uk/billing/clientarea.php?action=changepw

If you’re looking for a tool to create secure passwords, we recommend 1Password or https://www.xkpasswd.net.

Has this been fixed on all servers?

Just six hours after the Heartbleed OpenSSL vulnerability was announced to the public on Monday, FreshSites patched all servers and are no longer vulnerable.

If you have any questions about this exploit, please email us at support@freshsites.co.uk.

Tagged

,