How to protect yourself from the security bug Heartbleed
DO NOT rush to change your passwords on all of your favorite websites. You shouldn’t change your password on a site until the site has fixed the Heartbleed bug, or else you risk having your new password compromised. Watch for a notice on the site, but don’t click any links in emails claiming to be from the website.
Heartbleed is a recently discovered hole in the security software used by most major websites – everyone from Amazon to Yahoo to eBay – that may have allowed hackers to access consumers’ passwords or credit card information. Websites are now scrambling to fix this bug.
DO NOT rush to change your passwords on all of your favorite websites. You shouldn’t change your password on a site until the site has fixed the Heartbleed bug, or else you risk having your new password compromised. Watch for a notice on the site, but don’t click any links in emails claiming to be from the website.
Instead, use the Heartbleed Checker to see which websites have fixed this security problem. Once sites have fixed the bug, THEN you should change your passwords.
This security hole is an important reminder to be diligent about protecting your data online. You should also always keep an eye on your accounts for any unusual activity. Our tips on how to avoid identity theft can also help you stay safe.
Authors
Emily Scarr
Senior Advisor, Maryland PIRG
Emily is a senior advisor for Maryland PIRG. Recently, Emily helped win small donor public financing in Montgomery and Howard counties, and the Maryland Keep Antibiotics Effective Act to protect public health by restricting the use of antibiotics on Maryland farms. Emily also serves on the Executive Committees of the Maryland Fair Elections Coalition and the Maryland Campaign to Keep Antibiotics Working, and the Steering Committees for the Maryland Pesticide Action Network and Marylanders for Open Government. Emily lives in Baltimore with her husband and dog.