If you have not yet heard about it, take a look at the web to get info on the heartbleed bug. Experts are advising people to change every username and password...but only AFTER the accounts they use have fixed the security on this bug. Just thought you needed to know. I was shocked when I read about it and am still wondering if HP and other sites are safe at the moment.
There's an excellent resource on the impact of this bug at http://heartbleed.com/ This one is really bad. But as TimeTraveler points out, it's pointless to update until AFTER the website fixes their vulnerability.
JDubya I just found that site and checked all of my main websites...almost ALL of them, including HP, FB, Amazon and a few others are UNSAFE at the moment. I urge everybody to go on to lastpass.com to check each and every site they use because most have NOT updated the fix yet and it is pointless to change your Passwords until they do. HP needs to get busy on this one asap!
I just Googled 'OpenSSL' and read this information about different versions:
Affected OpenSSL 1.0.2-beta OpenSSL 1.0.1 – OpenSSL 1.0.1f Unless an operating system patch for CVE-2014-0160 has been installed that doesn't change the library version, which is the case for Debian, Red Hat Enterprise Linux (including derivatives such as CentOS, Amazon Linux) or Ubuntu (including derivatives such as Linux Mint).
Many sites have complied with the patch (fix) so keep checking to make sure the sites you use most often have been patched. Only then, change your password. Several sites like Pinterest and tumblr are sending automated messages with link to change password. But in order to use the site, that screen redirects you to their log in screen. In the past this used to be a red flag for a scam site. But this is how all the sites (the ones who notify users) are doing it now.
It is similar to when you change your password with Google, you get redirected to sign in screen again. Keep checking the sites on heartbleed.com or others as shown on this forum, on my hub or your favorite trusted site for security checks. There are still quite a few sites who are not in compliance yet with the patch.
Hubpages is clear although Last Pass still is not up to date on Hubpages and several others I checked who are patched. I don't think their site is updated as often as they would like you to believe to keep people in the loop about which sites have been patched.
My bank comes up vulnerable, but when I check on heartbleed.com - it says all clear. So trust the site you have been getting the best results on, then change your password for that site.
That's interesting because Pinterest is showing as safe on several of the trackers and also on the new Chrome tracker. Changing your password before they fix the problem is a waste of time because once they fix it, you have to change your password again.
Pinterest has the all clear as of 4/11/2014 mid-day and is emailing all its members in batches with link to change password.
After you change password on that link, you still have to go to log in screen again and use the new password. The change screen is a secure screen that will not allow you to continue to your account on the site without re-logging in.
If you use Chrome they just added an extension that , if installed, will automatically display if you are on a site that is not safe. It is not displaying on Pinterest, Hub Pages, FB or some of the others I mentioned earlier.
Hi, I'm new to Pinterest and just received an email from apparently from them asking me to change my password as there had been some security issue (a virus called Heartbleed).I juts wanted to check if anyone knows if...
Anyone had there e-mail account hacked!?I had my Hotmail account hacked by some wanna be Internet Blogger who emailed all my contacts there links to an affiliate product! Even the editor at Hubpages!!All Hotmail do is...
Hi this Dorsi I'm posting through my friend Roses account. I tried to sign into my HubPages account this morning and my password, account and picture has been hacked. I can't get in and they have hacked my PayPal...
Not sure if this is a technical issue or not.Have always used LastPass to sign in without any problems until 2 days ago, now a captcha prevents this happening, this can be tricky and have to cycle several time to find...
I have doubt on ma wifey that she is talking to someone through her mails i aksed her bt she remained silient n beahved that nthing such had happened before Alcatraz! Niphedorurah i want her email account password...