On April 7, the security flaw known as Heartbleed, was discovered. The vulnerable software, OpenSSL, is part of many websites and online services and is used to secure Internet communications. The flaw allows hackers to get personal information without detection.
CHART: "THE PASSWORDS YOU NEED TO CHANGE RIGHT NOW"
Information Services also emailed a chart (via Mashable) this morning for various websites/services, their vulnerability to the Heartbleed bug and recommendations about whether to change user passwords. Since this bug not only affects campus accounts, but also personal accounts including social media, web shopping, email, etc., please consult the chart for vulnerabilities on your personal accounts.
For more information on Heartbleed on campus, see http://it.uoregon.edu/heartbleed-faq. If you have questions, contact your local IT support person or the Information Services Technology Service Desk at techdesk@uoregon.edu or 541-346-HELP.
UPDATE concerning chaging UO passwords:
You will need to change your UO passwords, but please wait until asked to do so. To improve security, we need to insure that work across campus has been completed. For assistance in changing your password, see Heartbleed: How to Change Your Password.
- from Information Services