Security Alert: Heartbleed Bug

A newly discovered security bug nicknamed "Heartbleed" has reportedly exposed sensitive data from many websites. The bug can scrape a server's memory where sensitive user data is stored, including private data such as usernames, passwords, and credit card numbers.

The systems that are vulnerable are “Open Source,” such as Linux. Microsoft-based systems are not affected.

ATG systems, including ATG REsource, are secure and not affected.

The ATG Information Technology Department recommends the following:

  • Verify that websites that store your credit card information have been patched (learn more). See The Heartbleed Hit List: The Passwords You Need to Change Right Now for a current list of sites that have been checked for Heartbleed vulnerability.
  • Change your password for sites that have been patched.
  • Change your passwords at banking and other sites that store credit cards at least every six (6) months.

For more information, review this CNET article, How to Protect Yourself from the Heartbleed Bug. See also Heartbleed Detector: Check If Your Android OS Is Vulnerable with Our App.

ATG Member Agents: Feel free to Contact the ATG HelpDesk with questions.

Posted on: Thu, 04/10/2014 - 3:52pm