The Heartbleed Bug

You've probably heard about the Heartbleed Bug on the news, from a friend or on a social site.  MacExperience is here to shed a little light on the subject in simple terms.

What is the Heartbleed Bug?

The Heartbleed Bug is a vulnerability in something called OpenSSL, a very common tool used to protect and encrypt your data as it travels through the internet.  With Open SSL, your data is encrypted, or scrambled if you will, for protection, and then deciphered  once it arrives.  These include your passwords and usernames as well as other potentially sensitive information.  The bug would allow someone to decipher and clearly read that data.

Is there a problem with my Apple products?

Nope.  This has nothing to do with any hardware that you own.  This bug affects what is between your computer and the other person’s computer.  While the data is in Cyberland, someone could grab the data and read it.

Can I fix it?

The Heartbleed Bug is a problem with certain websites that needs to be fixed on their end.  Our recommendation (and by “recommendation", we mean you really need to) would be to change your password on all websites, as well as your email passwords (a good thing to do periodically, anyway).

What sites have been affected?

Any sites that you use that require a password can be checked at LastPass.  This site will inform you if a site has been affected, and if it is now safe.  If the site you have checked has been affected but now safe, change your password for that site.

What about my credit cards and banking?

According to Mashable, none of the major finance and banking websites are known to be affected.  We do recommend you monitor your bank accounts for strange activity and watch for communications from your favorite websites advising you on the situation and any actions you need to take in regards to your banking information.