Heartbleed - which are the high value target websites that I should worry about first?
I understand the importance of changing passwords NOW on my banks, other financial institutions and email. But what's next?
Do I worry about websites that keep my credit card on file (ie, Amazon, airlines, clothing companies, newspapers, TV provider, etc. ? Does the fact that they keep my credit card on file mean that someone who can access my account can steal that password? As I type this, that seems like s stupid question.
And what about sites like Evernote or a task manager where a whole bunch of personal but not financial info might be in the notes or tasks?
Then there's all the many websites that do not keep by credit card nor any other important information that I can think of. I assume that I have no worry here unless I use a the same password or a variation of the same password that I use on a critical site (ie, see first list above)? Or am I wrong?
Comments
-
Hi @royofsf,
Once an affected website has updated their servers to the fixed version of OpenSSL and installed a reissued SSL certificate, then you should change your password there.
Details about Heartbleed here:
1Password, Heartbleed, and You
Please let us know if you have any other questions. We're always here to help! :)
0
