Jump to content

Heartbleed


Recommended Posts

Has balletcoforum put the appropriate patches on the forum?

 

Another well known forum I use was compromised & a list of usernames/ passwords published. Plus the site owner was hacked.

 

I've changed my password there as requested but I use the same one on this forum.

 

The advice is to change passwords only after the patches have been applied or the new password us just as vulnerable.

 

Has this been done?

Link to comment
Share on other sites

I've heard back from Invision:

 

"All of our servers were updated to fix the Heartbleed bug in OpenSSL as soon as the vulnerability was discovered so your forum is secured against it."

 

They reckon that the chance that our site was attacked is very slim indeed, especially as we are not exactly a high value target. If you're worried, change your password and the usual advice about not using the same password on different sites applies.

Link to comment
Share on other sites

  • 2 weeks later...

This just in from the Royal Opera House:

 

HeartBleed Bug: An important update
Why changing your ROH website password is strongly advised

 

As you may be aware from the news, a security bug called HeartBleed has recently been discovered affecting thousands of websites across the world, including some of the world’s biggest companies like Google and Facebook.

The bug has also partially affected one of the technologies that the Royal Opera House website uses, although we have no reason to suspect that the Royal Opera House website was compromised and our servers have been updated to fix the issue.

We fixed the issue as soon as it was published, and have been working to ensure our website is as secure as possible. The bug did not affect credit card details because credit card information is managed using a different technology.

You have also likely heard from other companies asking you to change your password on their website. As a precaution we would recommend that you change your ROH website password in your account by signing in, selecting your username in the top right of the screen, then clicking ‘password’.

Change password here

For further information on the bug and how to create a secure password, BBC News have a useful article on password security.

Yours sincerely,

Rob Greig
Chief Technology Officer

 

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

×
×
  • Create New...