Heartbleed Bug

9 Apr 2014

Reflow Studio recently patched a critical security vulnerability affecting any of our clients using an SSL certificate on their website.

The 'Heartbleed Bug' hit the mainstream news early on 8th April.  The bug is a serious vulnerability in the popular OpenSSL cryptographic software library.  It allows the stealing of information protected, under normal circumstances, by the SSL/TLS encryption used to secure the Internet.

We have updated all our servers to use versions of the OpenSSL library that are not affected by this vulnerability and have revoked all sessions that were active on our servers prior to the update. We are continuing to work with our hosting providers to mitigate any issues that can arise.

For more information on the Heartbleed Bug please visit:

http://www.bbc.co.uk/news/technology-26935905
http://heartbleed.com

Blog archive