The Heartbleed Bug can exploit some Websites Running Ssl encryption (Apache and Nginx), and it can expose private information such as passwords.  This means the bug could affect your website if you are running SSL, social media websites, financial institutions, email, and many more websites.  So here are some immediate steps you should take to protect your business.

1. If your business has a website, intranet, and/or extranet running SSL, it could be vulnerable.  Check with your hosting company to see if they have patched their servers.  If you host your website, visit OpenSSL to find out how to install the patch.
2. Your social media website passwords could be compromised.  Change your passwords and see here for a list of specific sites that should be addressed immediately and here for a larger list of websites.
3. Limit your employees from accessing social media, e-commerce, financial institutions, and other websites with SSL in the short term.  It will take some time for every business to address the bug and install the patch.
4. And when in doubt, change your password, and make sure it meets strong password requirements.

As always if you have any questions or comments, please feel free to list them below.

About the author