Password Change Required Due to 'Heartbleed' Exploit; Affected Websites Include Yahoo, Google, Facebook
Yesterday, we reported that there is a critical vulnerability known as "Heartbleed Bug" that allows attackers to gain access to sensitive data, credit cards, usernames, passwords, private communications, among others. And today, we have the list of sites and services that were affected.
Heartbleed bug is one of the massive security threats the Internet has faced thus far. It is worth noting that, this SSL vulnerability has affected many popular websites and services that you visit in your day-to-day life.
To get in-depth information on this vulnerability - Click here.
Mashable has information on the list of sites and services that is affected because of this critical vulnerability. Many of the websites and services took prompt measures by updating their servers with security patch to fix the problem and also to curb such attacks in the future. We have hand-picked some of the most popular sites and listed down for your perusal.
If the sites that you visit every day is listed below and that requires a password reset, please go ahead and reset your password immediately in order to avoid further attacks on your system.
Nevertheless, resetting your password is not an assurance that your personal data was not compromised already. The silver lining is hackers might have got the scoop on this vulnerability only this week, albeit this exploit is prevailing for about two years now. Also note, the sites that have not got this security patch is still vulnerable to attacks.
To elucidate the intensity of this attack, here is an example from Wired, "Someone with the online handle 'Holmsey79' logged into Yahoo yesterday and his account was instantly hacked. Simply because he logged in - a computer research firm called Fox IT was able to grab his online credentials from Yahoo's servers, including his password and online session cookie."
As a rule of thumb, it is a good practice to change the password periodically.
List of Affected Sites And Services
Site/Service Name | Affected? | Password Change Required? |
Yahoo (Search ,Yahoo Homepage, Yahoo Mail, Yahoo Finance, Yahoo Sports, Yahoo Food, Yahoo Tech, Flickr) | Yes | Yes |
Google (Search, Gmail, YouTube, Wallet, Play, Apps and App Engines) | Yes | Yes |
Amazon | No | No |
Amazon Web Services (for website operators) | Yes | Yes |
No Information Available | Yes | |
No | No | |
No Information Available | No Information Available | |
Microsoft (Hotmail, Outlook) | No | No |
Tumblr | Yes | Yes |
eBay | No Information Available | No Information Available |
PayPal | No | No |
AOL | No | No |
SoundCloud | Yes | Yes |
Dropbox | Yes | Yes |
Apple | No Information Available | No Information Available |
Target | No | No |
Netflix | No Information Available | No Information Available |
The list will be updated as we get more clarity on the companies and their services.
