Victory Motorcycle Forum banner

1 - 7 of 7 Posts

·
Administrator
Joined
·
5,975 Posts
Discussion Starter #1
heartbleed-icon.jpg
Some of you may have heard of Heartbleed, the web security issue that has affected approximately 67% of all websites.

In a nut-shell Heartbleed is a security issue that was just discovered, which has left the majority of websites using SSL vulnerable for the past 2 years or so. What this means to you, is that whatever username/password you've had on a website affected was readable by 3rd parties who were not supposed to be able to see it. There is no trace left to be able to tell if your information was read at some point or not.

So, what do you do?

1.) If you share the same password on various website (for example, your banking account password is the same as the password on your yahoo account), you should change your passwords immediately. Chances are (67%!!!) that your passwords are not longer as private as you intended them to be.

2.) A good Italian fella has put together this website, which checks actively if the websites you have password protected accounts on are safe or not. You can test such websites here: http://filippo.io/Heartbleed/.

3.) Monitor your credit card and bank statements, and make sure you are familiar with all transactions shown. If not, contact your financial institution immediately.

The biggest names on the affected list are Yahoo and Canada Revenue Agency (currently shut down to address this issue).
 

·
Premium Member
Joined
·
9,684 Posts
Thank you for the heads up CR cheers
 

·
Registered
Joined
·
81 Posts
View attachment 69866


1.) If you share the same password on various website (for example, your banking account password is the same as the password on your yahoo account), you should change your passwords immediately. Chances are (67%!!!) that your passwords are not longer as private as you intended them to be.
Just a suggestion...before you rush to change all your passwords, find out if they've fixed the website first, otherwise you're just adding your new password to the same broken site.
 

·
Moderator
Joined
·
13,177 Posts
crossroads
I went to that site you posted and they ask for my URL I don't have any idea what that is
where or what is it.
Thank You
 

·
Registered
Joined
·
504 Posts
crossroads
I went to that site you posted and they ask for my URL I don't have any idea what that is
where or what is it.
Thank You
I think thats a russian motorbike! :cool: sorry had to!


the URL is whatever site name your are trying to test... like - yahoo.com
 

·
Administrator
Joined
·
5,975 Posts
Discussion Starter #6
crossroads
I went to that site you posted and they ask for my URL I don't have any idea what that is
where or what is it.
Thank You
The URL (uniform resource locator) is the address of the website you are checking. For example, say you wanted to check the VictoryHID website, you would put: "victoryhid.com" or you would put "victoryforums.com" if you wanted to check the forum, although the forum does not use SSL (secure socket layer) protection anyways, so no point in checking. Sites that use SSL will display a little lock icon next to the URL to confirm the connection between you and the site is secured - usually anything that involves transaction of money is secure (or so we thought). By the way, the little lock icon looks like this:
https.PNG
 

·
Registered
Joined
·
1,414 Posts
Thanks for the heads up.
On to practical matters. I use several on line IDs. For simple forums I am Oldman47 and use the same password on all of those. On financial and similar locations I use a completely different logon and a different password too. Should I take this warning to mean that my financial records are also at risk even though they are completely separate from my generic logons and passwords?
 
1 - 7 of 7 Posts
Top