On April 7, 2014, security researchers announced they had uncovered a bug or flaw in a key safety feature of the Internet—OpenSSL software. It’s called the Heartbleed Bug. This software is one of the key technologies used to encrypt data transactions online. An indicator that a site is protected by this software is the signature padlock displayed in the browser. This bug allows attackers to retrieve sensitive information such as usernames, passwords and credit card details from servers running the affected versions of the software.
Our Online Banking webservers do not use the version of the OpenSSL library that is vulnerable to this Bug.
So what can I do to protect myself?
Assume that your accounts may be compromised. You should change your online passwords, especially for services where privacy and security are major concerns. Keep in mind many sites likely haven’t upgraded to software without the bug. Most major service providers should already be updating their sites, so the bug will be less prevalent over coming weeks.
Call us with any concerns or questions at 256.547.2572.