Heartbleed Vulnerability in OpenSSL

You may have heard in the news over the last week of the existence of a vulnerability (called Heartbleed) in a product called OpenSSL, something that is used by many systems throughout the internet.

Last week we checked our customers’ systems as well as our own and immediately patched the vulnerable devices as soon as the manufacturer released an update.

We recommend your web site developers be contacted to ensure your web sites are not vulnerable and, if they are, what actions have been/will be taken to secure them.

You may be notified to change your password by owners of web sites that have the vulnerability. If this happens it is worth doing so. You could change web site passwords before being asked, but until the web site owners have fixed the fault any password change would need to be repeated once the fix has been implemented.

If you require any further advice, please contact us.