OpenSSL Security Update
Yesterday the OpenSSL Project released an update to address the CVE-2014-0160 vulnerability, also known as the "Heartbleed Bug".
The OpenSSL toolkit implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols and is widely used to encrypt web traffic. The CVE-2014-0160 vulnerability in OpenSSL affects a substantial number of web applications and services, including JackDB.
All JackDB services, infrastructure, and certificates have been updated and are no longer vulnerable to the CVE-2014-0160 vulnerability. However, this vulnerability in OpenSSL has existed for a long time. As a precautionary measure, we encourage all JackDB customers to update their JackDB account passwords.
As always, if you have any questions or concerns about this security update, please email us at firstname.lastname@example.org.