As you may have read, there is a very serious vulnerability in OpenSSL that allows anyone to remotely access data sent via HTTPS while it is stored unencrypted in RAM. This bug, called Heartbleed, is pretty serious, and has affected two-thirds of the internet’s web servers. Here are the Top 5 Things You Need To Know about Heartbleed:
1. Mashable has a great list of all the website that were hit. They are updating it as new information comes in.
2. Heartbleed is not a “virus.” It is, in fact, a software defect. Forbes sums it up nicely.
3. Heartbleed has allowed outsiders to peek into the personal information that was supposed to be protected by that little padlock image in your address bar. That doesn’t necessarily mean that they did.
4. Hold up on changing your password. You need to log out of all the sites you use a password to log into – but those sites need to update to a new version of the encryption software in order to fix this crazy bug.
5. HostMySite has already completed the updates! On April 8th, our control panel, billing and ticketing systems, along with all of our Linux web servers (including VPS and Dedicated) were updated.
We take security very serious at HostMySite and worked tirelessly to ensure we corrected this issue. You can be sure your hosting account is safe and in good hands!