• Heartbleed & Siteflex

    Thu, Apr 10, 2014

    Siteflex customers may have heard about the Heartbleed vulnerability that was recently discovered with the OpenSSL platform, and hence be wondering if their website is at all affected.

    Siteflex customers will be pleased to know that no Siteflex website has been or will be affected by this vulnerability. Siteflex does not use the OpenSSL platform to implement SSL on any of our secure websites, which mostly comprise of our ecommerce websites.

    So, as always, you can rest easy - Siteflex has got your back.

    What's going on with this Heartbleed bug?

    Basically seemingly private data, such as passwords and access keys, can be accessed by a malicious user on affected websites.

    It is estimated that 17% of the world's secured websites are affected, according to Netcraft, including popular services such as Twitter, GitHub, Yahoo, Tumblr, Steam, DropBox and the Commonwealth Bank of Australia. 

    It has already been recommended by some services to change your passwords. Already mailouts are trickling out with this recommendation from the affected services. 

    Be cautious with any emails landing in your inbox on this topic, as this may be a perfect opportunity for phishing emails to attempt to acquire sensitive information from you.

    Looking for more information on what the Heartbleed vulnerability is? There are numerous write-ups about the issue. Here's a few: