Following recent news that the Heartbleed Bug can exploit a security flaw across the majority of the Internet, we are taking action with our clients to update all passwords. Technical experts advise that this may not be necessary until service providers fix the vulnerability, but we prefer to take a pro-active approach.
The Heartbleed Bug exploits servers that use Open SSL, a software library used to encrypt sensitive data. Although your website doesn’t necessarily use this feature, the servers that host your website may do so – as may the servers for other services that you use such as email and file storage.
We take online security threats very seriously and for clients that we manage these services on behalf of, we are updating all passwords today. We will implement a further password update as service providers address this weakness over the coming weeks.
Although there is speculation that this is not necessary until the flaw has been addressed globally we recommend changing all online passwords now, to be on the safe side.