Chances are you’ve heard a lot about the massive Heartbleed security bug in recent days. But if you’re like me, you aren’t sure which websites were impacted, and what passwords you need to change.
In a nutshell, the Heartbleed bug, which went undetected for two years, leaves sensitive personal data – like usernames, passwords and credit card information – vulnerable and at risk of being intercepted. So it’s bad news – really, really bad news.
According to Mashable, Internet companies left vulnerable to Heartbleed scrambled to quickly update their servers and develop a security patch.
So what can you do to protect yourself? If you haven’t already, change your passwords on the websites affected by the bug.
Mashable compiled the following list of popular websites impacted by Heartbleed. Each of the sites has developed a security patch to protect users’ data.
If you have an account on one of the major sites listed below, change your password now.
- Social networks – Facebook, Instagram, Pinterest, Tumblr.
- Other companies — Google, Yahoo.
- Email – Gmail, Yahoo Mail.
- E-commerce – Amazon Web services (for website operators; Amazon for shoppers was not affected), Etsy, GoDaddy.
- Entertainment – Flickr, Minecraft, Netflix, YouTube, SoundCloud.
- Government – USAA.
- Other – Box, Dropbox, GitHub, IFTTT, OKCupid, Wikipedia, Wunderlist.
How can you tell if other websites you use are affected? McAfee released a free test.
CNET said it’s critical that people not underestimate the severity of the Heartbleed bug.
Security vulnerabilities come and go, but this one is extremely serious. Not only does it require significant change at websites, it could require anybody who’s used them to change passwords too, because they could have been intercepted. That’s a big problem as more and more of people’s lives move online, with passwords recycled from one site to the next and people not always going through the hassles of changing them.
A large number of Android smartphones – those that run 4.1.1 Jelly Bean – are still susceptible to the security bug, according to Business Insider. Not sure what version of Android your phone is running? Go to the Settings Menu, then check the About Phone option. You should be able to see what version of Android is running and also check for software updates.
I changed my Facebook, Netflix, Instagram and Yahoo Mail passwords. I also changed my Amazon and Hotmail passwords even though they weren’t on the list, because it’s always a good idea to change passwords from time to time.
Have you changed your passwords?