Heartbleed Bug OpenSSL Vulnerability
What is it?
Heartbleed is a recently uncovered security bug that is scaring internet users. Internet and security experts are warning people that their personal information, such as passwords, credit card information and emails are at risk.
The Heartbleed bug affects any sites and services running OpenSSL, an open-source encryption technology that is used in most web servers, VPN connections and email servers.
What do I have to do?
To protect user data and encryption keys, the companies hosting your websites must upgrade to the patched version of OpenSSL, revoke compromised SSL certificates and get new ones issued. These are issues that you need to discuss with your website hosting provider immediately. Once it is done, you can put a notice on your website that you have taken the steps necessary to correct the problem.
What has JENLOR done?
- All SonicWALL Firewalls with active security subscriptions are now protecting any devices sitting behind the Firewalls.
- JENLOR is in the process of verifying all customers SSL Certificates that were purchased from JENLOR, as well as SonicWALL VPN Appliances.
- After doing a first pass, we have identified 6 JENLOR customers that are at risk. We have opened internal service tickets to ensure these are solved immediately. We will be reaching out to these particular customers very soon to remediate this security gap.
For more information on Heartbleed, please click on the following links:
If you have any specific concerns, please don’t hesitate to call me directly.