In case you aren’t already familiar, a serious internet security bug was discovered recently. The bug, called Heartbleed, is a flaw in the encryption software OpenSSL.
The bug lets anyone on the internet read the memory of systems protected by OpenSSL. According to Heartbleed.com, the bug “allows attackers to eavesdrop on communications, steal data directly from the services and users and to impersonate services and users.”
The websites affected, which include internet giants like Google, Yahoo, and Amazon, have for the most part updated their servers with a patch for the bug. Once a website updates their server, though, it’s on you to change your password for the site.
To check if a site is still vulnerable to the Heartbleed bug, go here and type in the URL of the site you are inquiring about. To see a list of sites that have or have not updated their servers with the Heartbleed patch, check out this Mashable list.
Here is a quick summary of which ones you need to change your passwords for:
Social Networks: Facebook, Twitter, Instagram, Pinterest, Tumblr
Companies: Google, Yahoo
E-mail: Gmail, Yahoo Mail
Stores/Services: Amazon, GoDaddy, DropBox, OKCupid
Those in the internet security industry warn users not to take the bug lightly.
“It's a big deal for Internet users, especially when it comes to protecting financial information," LastPass Ceo Joe Siegrist said.