By now you may have heard of the ‘Heartbleed’ online panic and the hype that shrouds it.
Almine’s web servers were ‘patched’ for this security threat within hours of the announcement on April 7, and the security certificates on our sites were never vulnerable to begin with. Our certificates are issued by Geotrust, and NOT the affected OpenSSL. (All this means that even if hackers obtained your data, this data was encrypted, and therefore of no use). However, we’ve started re-issuing our web sites’ security certificates, as there is still the matter of people’s perception of safety.
What’s interesting about this is that normally these security issues are resolved quietly behind the scenes. This time, though, the cat was let out of the bag and has accordingly thrown the internet in a state of panic.
Although the payment encryption on Almine’s websites has not been affected, as a general precaution you are advised to change your passwords for all websites where you’ve entered your credit card information.
See also Heartbleed pt. 2
See also the Forbes article Avoiding Heartbleed Hype http://goo.gl/gOzdDY (the best article we could find)
Leave a Reply