Ebuyer News

The Heartbleed Bug

Customer Information: The Heartbleed Bug

Ebuyer would like to reassure its customers that their details and information are in no way affected by the recent “Heartbleed bug” reported in the media.

There is no need for customers to change their ebuyer password or remove details in direct action of the Heartbleed bug.

For more information on the Heartbleed please read the post below

heartbleed bug header

The Heartbleed Scare

The recent news by the Heartbleed bug has caused quite a bit of panic around the security of passwords, meaning that many people have resorted to changing their passwords for all internet sites immediately and questioning the use of Password Managers. Ebuyer.com take a look at what it is and what to do about it.

What is Heartbleed?

Put simply, the Heartbleed bug is a flaw in the OpenSSL and means that hackers and attackers can retrieve information that was stored in the memory server, such as passwords for internet banking. Websites that have been affected include Yahoo, Facebook, Pinterest, Instagram, Tumblr, Twitter, Minecraft and Dropbox, as well as some others, and if you have logged into any of the affected sites in the past two years your account information could be vulnerable, meaning that cybercriminals may be able to have access it. The Internet companies that have been affected are now updating their services to deal with Heartbleed.

What to do?

Although it may be an immediate reaction to change your password and logins immediately for the sites that have been hit, people are advised not to do so until the companies have confirmed that they have dealt with the software bug. Otherwise there is a chance that your new details and password could be affected. It is however advisable to keep a close eye on your accounts that have a lot of personal and highly secure information, such as your e-mail and online banking logins for any suspicious activity.

What to do in the future?

Heartbleed has obviously stimulated questions about what people can do to increase the security of their passwords. Some people say that changing your password regularly is a way of preventing hacking, the Windows server, for example, has a default set up so users have to re-set their passwords every 42 days, whereas other sites recommend altering your password anywhere between 30 and 180 days.

Although changing your password after being a victim of a hacking or attack is advisable, it is considered to be more important to create an initial password that is unique for all logins and includes both number and symbols, as well as not using a password that is easy for people to guess. However, having an exclusive password for each account can be a lot to remember, so for this Password Managers such as LastPass, KeePass and F-Secure Key are a good idea to ensure that you can create more complicated passwords that ideally should be more secure. The downside to them however is that if a cybercriminal attack the Password Manager then they will be able to access all of your passwords.

When it boils down to matter of fact there is no one hundred percent sure way to prevent your password getting hacked into or your accounts being affected by a software bug, but the key points to consider before making a password are:

-Ensuring you have a unique password for each account

-Using numbers and symbols

-Opt for adding security questions and make them strong.


Most Popular

To Top