Heartbleed

13 views

Skip to first unread message

Steve Song

unread,

Apr 10, 2014, 12:31:24 PM4/10/14

to village-...@googlegroups.com

Hi all,

No doubt most of you are aware by now of the Heartbleed bug. http://heartbleed.com/

The Village Telco e-commerce server at https://store.villagetelco.com was not exempt and, like thousands if not millions of others, was vulnerable.

The direct problem on the server has now been addressed through an upgrade of openssl and a re-issue of the ssl certificates for the server. If you have an account on the store, you may wish to change your password now.

Like everyone else, we can and have addressed the vulnerability of the server going forward but it is impossible to know who, if anyone, was compromised as a result of this bug.

For your interactions elsewhere, here is a list of websites that you may wish to considering changing your password on

http://mashable.com/2014/04/09/heartbleed-bug-websites-affected/

As security expert, Bruce Schneier has said, on a scale of 1-10 for security breaches, this is an 11.

https://www.schneier.com/blog/archives/2014/04/heartbleed.html

Lastly, a little xkcd to cheer you up.

https://xkcd.com/1353/

Regards... Steve

--
Steve Song

+1 902 529 0046

http://villagetelco.org

Reply all

Reply to author

Forward

0 new messages