Кои пасворди треба ВЕДНАШ да ги смените?

Грешка во енкрипцијата наречена Heartbleed деновиве дига голема паника меѓу корисниците бидејќи се работи за една од најголемите безбедносни дупки во историјата на интернетот. Ние го проверивме нашиот сајт, Mashable  се занимаваше со другите.

Ние сме добри.

Проверка можете да направите овде. Останатите стојат вака:

Социјални мрежи

 

Was it affected?

Is there a patch?

Do you need to change your password?

What did they say?

Facebook

Unclear

Yes

Yes Yes

"We added protections for Facebook’s implementation of OpenSSL before this issue was publicly disclosed. We haven’t detected any signs of suspicious account activity, but we encourage people to ... set up a unique password."

LinkedIn

No

No

No

"We didn't use the offending implementation of OpenSSL in www.linkedin.com or www.slideshare.net. As a result, HeartBleed does not present a risk to these web properties."

Tumblr

Yes

Yes

Yes Yes

"We have no evidence of any breach and, like most networks, our team took immediate action to fix the issue."

Twitter

Unclear

Unclear

Unclear

Twitter has not yet responded to a request for comment.

Други компании

 

Was it affected?

Is there a patch?

Do you need to change your password?

What did they say?

Apple

Unclear

Unclear

Unclear

Apple has not yet responded to a request for comment.

Amazon

No

No

No

"Amazon.com is not affected."

Google

Yes

Yes

Yes Yes*

“We have assessed the SSL vulnerability and applied patches to key Google services.” Search, Gmail, YouTube, Wallet, Play, Apps and App Engine were affected; Google Chrome and Chrome OS were not.

*Google said users do not need to change their passwords, but because of the previous vulnerability, better safe than sorry.

Microsoft

No

No

No

Microsoft services were not running OpenSSL, according to LastPass.

Yahoo

Yes

Yes

Yes Yes

"As soon as we became aware of the issue, we began working to fix it... and we are working to implement the fix across the rest of our sites right now." Yahoo Homepage, Yahoo Search, Yahoo Mail, Yahoo Finance, Yahoo Sports, Yahoo Food, Yahoo Tech, Flickr and Tumblr were patched. More patches to come, Yahoo says.

Меилови

 

Was it affected?

Is there a patch?

Do you need to change your password?

What did they say?

AOL

No

No

No

AOL told Mashable it was not running the vulnerable version of the software.

Gmail

Yes

Yes

Yes Yes*

“We have assessed the SSL vulnerability and applied patches to key Google services.”

*Google said users do not need to change their passwords, but because of the previous vulnerability, better safe than sorry.

Hotmail / Outlook

No

No

No

Microsoft services were not running OpenSSL, according to LastPass.

Yahoo Mail

Yes

Yes

Yes Yes

"As soon as we became aware of the issue, we began working to fix it... and we are working to implement the fix across the rest of our sites right now."

Продавници и трговија

 

Was it affected?

Is there a patch?

Do you need to change your password?

What did they say?

Amazon

No

No

No

"Amazon.com is not affected."

Amazon Web Services (for website operators)

Yes

Yes

Yes Yes

Most services were unaffected or Amazon was already able to apply mitigations (see advisory note here). Elastic Load Balancing, Amazon EC2, Amazon Linux AMI, Red Hat Enterprise Linux, Ubuntu, AWS OpsWorks, AWS Elastic Beanstalk and Amazon CloudFront were patched.

Target

No

No

No

"[We] launched a comprehensive review of all external facing aspects of Target.com... and do not currently believe that any external-facing aspects of our sites are impacted by the OpenSSL vulnerability."

eBay

Unclear

Unclear

Unclear

"The vast majority of our services were not impacted and our users can continue to shop securely on our marketplace."

PayPal

No

No

No

"Your PayPal account details were not exposed in the past and remain secure." Full Statement

 
повеќе