A dangerous security flaw, known as Heartbleed, was discovered in OpenSSL Web servers. The security flaw enables cybercriminals to steal sensitive data from vulnerable versions of OpenSSL, which is used to secure communications on the majority of websites, including popular social media and banking websites. This means cybercriminals can steal your personal information from all affected websites. If you’re on a website with a little lock by the URL, chances are, it’s vulnerable to the security flaw.

Heartbleed has been around for over two years, so it’s safe to assume your passwords may have been compromised. While many sources suggest to change your online passwords in the wake of Heartbleed, you should wait until the websites are secure to change your passwords. Even if there’s no indication that your passwords have been compromised, it’s imperative to change your passwords as soon as the websites are secure.

See also: The Heartbleed bug -- what you need to know (FAQ)

Cybercriminals will send phishing emails to take advantage of your concern over Heartbleed. These emails will likely offer links to change your passwords, however, these links will direct you to a malicious website designed to steal your login credentials. If you’re changing your passwords, please go directly to the website to do so. Never change your password in response to an email.

Here are some basic tips to protect you and your business:

  • Be on the lookout for phishing emails: Most organizations will never send a password change request through email.
  • Never click on a CHANGE PASSWORD link: If you receive an email with a change password link, ignore it and go to the site directly.
  • CALL US AT ONCE: If you are not sure, before you do anything, call our support team.

Orbis Solutions provides IT services throughout Las Vegas, Henderson and Nevada.  Call (702) 979.1861 or email us at to learn more on how we can help protect your business and provide the best possible IT services to your growing business.