Password Change Required Due to 'Heartbleed' Exploit; Affected Websites Include Yahoo, Google, Facebook

  • Rate this Story
  • 0
  • 0

By Pavithra Rathinavel | April 10, 2014 5:22 PM EST

Yesterday, we reported that there is a critical vulnerability known as "Heartbleed Bug" that allows attackers to gain access to sensitive data, credit cards, usernames, passwords, private communications, among others. And today, we have the list of sites and services that were affected.

Heartbleed bug is one of the massive security threats the Internet has faced thus far. It is worth noting that, this SSL vulnerability has affected many popular websites and services that you visit in your day-to-day life.

To get in-depth information on this vulnerability - Click here.

Mashable has information on the list of sites and services that is affected because of this critical vulnerability.  Many of the websites and services took prompt measures by updating their servers with security patch to fix the problem and also to curb such attacks in the future. We have hand-picked some of the most popular sites and listed down for your perusal.

If the sites that you visit every day is listed below and that requires a password reset, please go ahead and reset your password immediately in order to avoid further attacks on your system.

Nevertheless, resetting your password is not an assurance that your personal data was not compromised already. The silver lining is hackers might have got the scoop on this vulnerability only this week, albeit this exploit is prevailing for about two years now. Also note, the sites that have not got this security patch is still vulnerable to attacks.

To elucidate the intensity of this attack, here is an example from Wired, "Someone with the online handle 'Holmsey79' logged into Yahoo yesterday and his account was instantly hacked. Simply because he logged in - a computer research firm called Fox IT was able to grab his online credentials from Yahoo's servers, including his password and online session cookie."

As a rule of thumb, it is a good practice to change the password periodically.

List of Affected Sites And Services

Site/Service Name

Affected?

Password Change Required?

Yahoo (Search ,Yahoo Homepage, Yahoo Mail, Yahoo Finance, Yahoo Sports, Yahoo Food, Yahoo Tech, Flickr)

Yes

Yes

Google (Search, Gmail, YouTube, Wallet, Play, Apps and App Engines)

Yes

Yes

Amazon

No

No

Amazon Web Services (for website operators)

Yes

Yes

Facebook

No Information Available

Yes

LinkedIn

No

No

Twitter

No Information Available

No Information Available

Microsoft (Hotmail, Outlook)

No

No

Tumblr

Yes

Yes

eBay

No Information Available

No Information Available

PayPal

No

No

AOL

No

No

SoundCloud

Yes

Yes

Dropbox

Yes

Yes

Apple

No Information Available

No Information Available

Target

No

No

Netflix

No Information Available

No Information Available

The list will be updated as we get more clarity on the companies and their services.

To contact the editor, e-mail:

  • Rate this Story
  • 0
  • 0
This article is copyrighted by IBTimes.com.au, the business news leader

Join the Conversation

IBTimes TV
E-Newsletters

We value your privacy. Your email address will not be shared.