- Small Business Trends - http://smallbiztrends.com -

The Effect of Heartbleed on Commonly Used Small Business Websites

Posted By Small Biz Technology On April 15, 2014 @ 7:00 pm In Small Business Operations | 9 Comments

heartbleed affected sites

As you might know by now, Heartbleed is a security flaw that enables unauthorized users to access your encrypted information. When you visit a website through a “secure connection,” in theory the information is encrypted and can’t be accessed.

According to CNN:

“Cybercriminals could exploit the bug to access visitors’ personal data as well as a site’s cryptographic keys, which can be used to impersonate that site and collect even more information.”

Just do a Google search for “Heartbleed” to see what you need to do. But in short, you need to:

  • Ensure that the websites you use have fixed the Heartbleed security flaw
  • If they’ve done this, you need to then change your password.

There seem to be so many security holes, flaws and ways for unauthorized users to access your network.

Here’s What You Should Do To Be As Secure As Possible

  • Be vigilant and aware when major secure flaws are announced by the general media.
  • Sign up for security notifications from your software vendors.
  • Regularly update your computer software (browser, operating system, software).
  • Backup your data and related software and applications.
  • Train your staff (and yourself) in the basics of computer security.
  • Be vigilant and smart (don’t write your password down on a piece of paper, for example).
  • Consider “two factor authentication” to have not only a password to access your websites, but also a secret code provided on a cell phone or other 3rd party device.

Affect of Heartbleed on Commonly Used Small Business Websites

Below are some popular small business online software websites and how they have been affected by Heartbleed.

Quickbooks Online: Not affected [1].

GoDaddy: If you use their SSL services read this statement [2] on what to do.

PayPal: Not affected [3].

Dropbox: Was affected [4] but has patched it’s servers, although a password reset is probably needed.

Evernote: Never affected [5] and was secure.

Asana: Was affected [6] and fixed their servers, but you might want to change your password.

Banks: Most all banks appear to have not been affected.

Infusionsoft: Not directly affected at all, however read this thorough blog post [7] for more details.

Heart [9] Photo via Shutterstock

Article printed from Small Business Trends: http://smallbiztrends.com

URL to article: http://smallbiztrends.com/2014/04/heartbleed-affected-sites.html

URLs in this post:

[1] Not affected: https://accountants-community.intuit.com/questions/891614-is-quickbooks-online-affected-by-the-heartbleed-bug

[2] read this statement: http://godaddyblog.com/open-ssl-heartbleed-weve-patched-servers/

[3] Not affected: https://www.paypal-community.com/t5/PayPal-Forward/OpenSSL-Heartbleed-Bug-PayPal-Account-Holders-are-Secure/ba-p/797568

[4] Was affected: https://twitter.com/dropbox_support/status/453673783480832000

[5] Never affected: http://discussion.evernote.com/topic/56287-heartbleed/

[6] Was affected: http://blog.asana.com/2014/04/heartbleed/

[7] blog post: http://blog.infusionsoft.com/company-news/need-know-heartbleed/

[8] Original here: http://www.smallbiztechnology.com/archive/2014/04/heartbleed-and-small-business-security-hearbleeds-affect-on-7-small-business-web-sites.html/

[9] Heart: http://www.shutterstock.com/pic-186666818/stock-vector-heartbleed-openssl-bug-vector-shape-bleeding-heart-with-wall-of-text-in-front.html