There's some good info available on this subject, too, if you Google "heartbleed virus". It has to do with companies that were using the SSL security feature. The recommendation is to make sure a site has fixed the vulnerabilities, and THEN change your password to that site. There's also a site that claims to be able to determine whether or not any given site is still vulnerable or not. Can't remember where I found that info (I don't think it was here) and can't search for it now, but I imagine it's out there for the finding. |