Thanks to the heart bleed bug there are more than half a million of webpages affected. Here you can find the most popular ones and find out the actions you need to take regarding the security of your account.
|
You can see the full updated list of affected sites in
http://www.cnet.com/how-to/which-sites-have-patched-the-heartbleed-bug |
|
AFFECTED SITES
Dropbox Etsy OKCupid Prezi Tumblr Yahoo NOT AFFECTED Amazon Apple Ebay Evernote Linkedln Microsoft Paypal UNCLEAR |
DO YOU NEED TO CHANGE YOUR PASSWORD ?
Yes. “We’ve patched all of our user-facing services & will continue to work to make sure your stuff is always safe,” the company tweeted. Yes. “As of right now, we have no indication that an attack has been conducted against Etsy beyond testing the vulnerability, but this type of issue makes it very difficult to detect, so we’re proceeding with a high degree of caution,” read a security update on Etsy’s website. Probably. According to a statement from Google, the company proactively looks for vulnerabilities in order to fix them before they are exploited and therefore fixed this bug “early.” Google said users do not need to change their passwords because of this – but better safe than sorry in this case. Yes. “Our security teams worked quickly on a fix and we have no evidence of any accounts being harmed,” the company said. Yes. Yes. Yes. Yes. “We have no evidence of any breach and, like most networks, our team took immediate action to fix the issue. This might be a good day to call in sick and take some time to change your passwords everywhere,” Tumblr said in a statement. Yes. “Our team has fixed the Heartbleed vulnerability across our main properties and is implementing the fix across our entire platform now,” the company tweeted. DO YOU NEED TO CHANGE YOUR PASSWORD ? No. Amazon said with the exception of some services – Elastic Load Balancing, Amazon EC2, Amazon CloudFront, AWS OpsWorks and AWS Elastic Beanstalk - its services were unaffected. If you use these, you should probably change your password. No. No. No. “Evernote does not use, and has not used, OpenSSL, so we were not vulnerable to this bug. As an Evernote user, you don’t need to take any action,” read the company’s blog. No. No. No. No. “We were able to determine that twitter.com and api.twitter.com servers were not affected by this vulnerability. We are continuing to monitor the situation,” Twitter said on its website. DO YOU NEED TO CHANGE YOUR PASSWORD ? Yes. “We added protections for Facebook’s implementation of OpenSSL before this issue was publicly disclosed. We haven’t detected any signs of suspicious account activity, but we encourage people to [...] set up a unique password,” Facebook said in a statement. References: [1] Bogart, Nicole (April 11, 2014). "Heartbleed bug: What’s affected and what passwords you need to change". Global News. Retrieved April 21 2014, from: http://globalnews.ca/news/1265980/heartbleed-bug-whats-affected-and-what-passwords-you-need-to-change/ [2] Kleinman, Alexis (April 11, 2014). "The Heartbleed Bug Goes Even Deeper Than We Realized – Here's What You Should Do". The Huffington Post. |