The short answer is yes, but there are are steps you can take to protect yourself.
Many of you may have heard in the news about the recently-discovered Heartbleed vulnerability that poses a serious security risk to many web servers around the world. JLOOP became aware of Heartbleed within the last 48 hours, and we have already worked with our hosting partner and fixed the vulnerability on our clients’ web servers. Even though JLOOP’s client sites are now protected, there are thousands of sites around the web that are still at risk.
Sites of all shapes and sizes use OpenSSL, which is the software that is the source of the vulnerability. From online banks to social networks, this technology that is seen nearly everywhere on the web when elevated security is needed to protect your personal information. In the short term, we recommend changing your passwords on any sites that contain personal data. Like JLOOP, many popular sites have already plugged this security hole, but it is recommended that you search around to see if your most important sites (such as your bank) have put out a press release stating that they have fixed the Heartbleed issue.
If you’re interested in learning more about the impact that Heartbleed could have on your personal internet security, please check out the article below from The New Yorker that explains the origins and far-reaching effects of the vulnerability in easy-to-understand language.
For even more technical details, you can visit the official website at heartbleed.com: