Norton has a site about Heartbleed:
http://www.symantec.com/connect/blogs/heartbleed-bug-poses-serious-threat-unpatched-servers
Near the bottom of the page is a link to a tool that will test a site to see if it is currently affected by Heartbleed. Of course, a site might have been affected in the past and be fixed today. So your password or other information could have been taken during the period it was affected. If it is not affected now, you could go ahead and change your password.
This is a good example of why one should not use the same password for different sites that have sensitive information. |