On April 7, 2014 information was released about a new vulnerability in OpenSSL, the cryptography library that powers the vast majority of private communication across the Internet. This library is key for maintaining privacy between servers and clients, and confirming that Internet servers are who they say they are.
This vulnerability, known as HeartBleed, would allow an attacker to steal the keys that protect communication, user passwords, even the system memory of a vulnerable server. This represents a major risk to large portions of private traffic on the Internet.
What is Koumbit doing about this?
- We've patched all our systems using the newer, protected versions of OpenSSL
- We've recreated and redeployed new SSL keys and reset internal credentials.
What can you do?
We suggest that you reset your email passwords, your alternC account password and others.