What you need to know about the Heartbleed security bug

A major security flaw called Heartbleed was recently discovered by a researcher at Google and a Finnish security firm called Codenomicon.

This issue is a flaw in OpenSSL, which is the encryption technology that more than 60% of the websites on the Internet, including HealthUnlocked, use. Websites that use this encryption technology are usually indicated by a lock icon in the browser so that visitors know that their details are protected and hidden.

Heartbleed was caused by a small coding error in OpenSSL the consequences are important. Though the risk is minimal, there is the chance that someone could have exploited the bug to capture some of your personal information like passwords.

Here at HealthUnlocked we already fixed this error and for added measure we made every member logout so that they have to login again. Websites around the world are in the process of releasing similar fixes to their respective platforms. Additionally, we strongly recommend that everyone does the following:

  1. log out from any websites where you selected ‘keep me logged in’ and log back in
  2. update all your passwords

Click here for 3 tips to quickly create a strong and secure password for your online accounts.

If you’re interested in a technical explanation of Heartbleed, here’s a very clear video by Zulfikar Ramzan, MIT Ph.D. and CTO of a cloud security firm called Elastica.

//player.vimeo.com/video/91425662?title=0&byline=0&portrait=0


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.