Be on Alert for the Heartbleed Bug
- What exactly does this bug do and why should you care?
The Heartbleed Bug affects the encryption technology used by companies who expected to protect your online user accounts, such as banks, retailers or any sites where you use your credit card or other personal information. When the bug is exploited, the attacker can retrieve information from the remote system. The system may contain usernames, passwords, credit card numbers or other personal information that enables bigger attacks. An attacker may, for example, be able to retrieve the encryption keys used to encrypt data traffic and then intercept and read the information of all other users of that service.
- What is Enterprise Technology Services doing in regards to County data?
Enterprise Technology Services (ETS) is working to identify any of our systems that may potentially be affected by Heartbleed and patching those systems as required. At this time, there is nothing our users need to do with regard to ETS managed Broward County systems. Should this change, we will notify you.
- What should you do personally?
Users are encouraged to contact all of their personal online service providers (online banking, bill pay, email providers, etc.) for information on how this may affect your account and personal information. As an example, Yahoo, who has patched this vulnerability, is now recommending all of its Yahoo Mail users to change their passwords.
As always, we encourage everyone to follow safe computing practices while at work and when using personal devices.