Following the recent revelation that the encryption which protects the personal data we send across the web may in fact be flawed, there has been a great deal of media attention around social sites, with the spotlight shining particularly bright over Facebook.
However, while Facebook have admitted they have been affected by Heartbleed, so too have a great number of other web platforms like Google, Yahoo and Amazon Web Services.
Heartbleed is a tricky one to get your head around, but essentially the outcome of the exploit is that you need to change your password for many but not all of the websites you log into over the web so that your personal data continues to be secure.
Continuously updated by Mashable, the table below identifies as at the time of writing, a list of website and services that have been affected.
Social Networks |
|
|
|
|
|
Was it affected? |
Is there a patch? |
Do you need to change your password? |
|
|
Yes |
Yes |
Yes |
|
|
Yes |
Yes |
Yes |
|
|
No |
No |
No |
|
|
Yes |
Yes |
Yes |
|
Tumblr |
Yes |
Yes |
Yes |
|
|
No |
Yes |
Unclear |
|
Other Companies |
|
|
|
|
|
Was it affected? |
Is there a patch? |
Do you need to change your password? |
|
Apple |
No |
No |
No |
|
Amazon |
No |
No |
No |
|
|
Yes |
Yes |
Yes* |
|
Microsoft |
No |
No |
No |
|
Yahoo |
Yes |
Yes |
Yes |
|
|
|
|
|
|
|
Was it affected? |
Is there a patch? |
Do you need to change your password? |
|
AOL |
No |
No |
No |
|
Gmail |
Yes |
Yes |
Yes* |
|
Hotmail / Outlook |
No |
No |
No |
|
Yahoo Mail |
Yes |
Yes |
Yes |
|
Stores and Commerce |
|
|
|
|
|
Was it affected? |
Is there a patch? |
Do you need to change your password? |
|
Amazon |
No |
No |
No |
|
Amazon Web Services(for website operators) |
Yes |
Yes |
Yes |
|
eBay |
No |
No |
No |
|
PayPal |
No |
No |
No |
|
Target |
No |
No |
No |
|
Walmart |
No |
No |
No |
* Google have advised that users do not need to change their passwords, but because of their previous vulnerability occurance, it is better to be safe than sorry.
If you would like to learn about Heartbleed in greater detail, here are a few articles we can recommend:
http://mashable.com/2014/04/09/heartbleed-nightmare/
http://www.gizmodo.com.au/2014/04/heartbleed-why-the-internets-gaping-security-hole-is-so-scary/
http://www.lifehacker.com.au/2014/04/what-the-heartbleed-security-bug-means-for-you/
As always, please contact our Helpdesk if you have any questions or concerns about the protection of your data on 02 4254 5444.