The Heartbleed virus affects websites that use Open SSL for authentication. This vulnerability can be exploited to intercept encryption keys, user names, passwords and other sensitive information, before it is encrypted. According to estimates, this bug could affect around two-thirds of web servers, including popular websites, email, social networks, even VPNs. Fortunately, not all versions of OpenSSL are vulnerable to this kind of exploit.
We’ve provided a list below of the most popular websites, their current status and suggested remediation. It’s up to the site in question to first fix the vulnerability. If a site you use every day is affected, it’s best not to log into it until it’s been patched. If the bug hasn’t been fixed, changing your old password to a new password would just result in your new password being susceptible
We suggest you take the following actions to protect yourself:
- Review the list below and follow the recommended remediation for that particular website
- If you use an Android device, we suggest you install Lookout’s Heartbleed Detector to determine if you device is using an affected version of Open SSL.
If you have any additional questions or concerns, please contact ACE IT Solutions at (646) 558-5575 or info@aceits.net
WEBSITE LISTING
| Site |
Status |
Confirmation from site |
| About |
Not available |
Was not vulnerable |
| Adobe |
Pass |
Awaiting response |
| Amazon |
Pass |
Was not vulnerable |
| Amazon Web Services |
Pass |
Awaiting response |
| Answers |
Pass |
Was not vulnerable |
| AOL |
Pass |
Awaiting response |
| Apple |
Pass |
Was not vulnerable |
| Ask |
Not available |
Was not vulnerable |
| AT&T |
Passç |
Awaiting response |
| AWeber |
Pass |
Was not vulnerable |
| Bank of America |
Pass |
Was not vulnerable |
| Best Buy |
Pass |
Awaiting response |
| Bing |
Pass |
Vulnerability patched. Password change recommended |
| Bleacher Report |
Pass |
Awaiting response |
| Blogger |
Pass |
Vulnerability patched. Password change recommended |
| Blogspot |
Pass |
Vulnerability patched. Password change recommended |
| BuzzFeed |
Pass |
Awaiting response |
| Capital One |
Pass |
Was not vulnerable |
| CBSSports |
Pass |
Was not vulnerable |
| Chase |
Pass |
Was not vulnerable |
| CNET |
Pass |
Was not vulnerable |
| CNN |
Be on alert |
Awaiting response |
| Comcast |
Pass |
Awaiting response |
| Conduit |
Pass |
Awaiting response |
| Constant Contact |
Pass |
Was not vulnerable |
| Craigslist |
Pass |
Awaiting response |
| Daily Mail |
Be on alert |
Awaiting response |
| Dropbox |
Pass |
Vulnerability patched. Password change recommended |
| Drudge Report |
Be on alert |
Awaiting response |
| eBay |
Pass |
Was not vulnerable |
| Espn.go.com |
Pass |
Vulnerability patched. Password change recommended |
| Etsy |
Pass |
Vulnerability patched. Password change recommended |
|
Pass |
Vulnerability patched. Password change recommended |
|
| FedEx |
Pass |
Was not vulnerable |
| Feedbin |
Pass |
Vulnerability patched. Password change recommended |
| Flickr |
Pass |
Vulnerability patched. Password change recommended |
| Forbes |
Be on alert |
Awaiting response |
| Fox News |
Pass |
Was not vulnerable |
| GetPocket |
Pass |
Vulnerability patched. Password change recommended |
| GoDaddy |
Pass |
Vulnerability patched. Password change recommended |
|
Pass |
Vulnerability patched. Password change recommended |
|
| Googleusercontent.com |
Pass |
Vulnerability patched. Password change recommended |
| Groupon |
Pass |
Was not vulnerable |
| Home Depot |
Pass |
Awaiting response |
| HootSuite |
Pass |
Was not vulnerable |
| Huffington Post |
Be on alert |
Awaiting response |
| Hulu |
Pass |
Was not vulnerable |
| IFTTT |
Pass |
Vulnerability patched. Password change recommended |
| IMDb |
Not available |
Was not vulnerable |
| Imgur |
Pass |
Awaiting response |
| Indeed |
Pass |
Awaiting response |
|
Pass |
Vulnerability patched. Password change recommended |
|
| Intuit |
Pass |
Awaiting response |
|
Pass |
Was not vulnerable |
|
| Live |
Pass |
Was not vulnerable |
| ManageWP |
Pass |
Was not vulnerable |
| Microsoft |
Pass |
Was not vulnerable |
| MSN |
Pass |
Was not vulnerable |
| NBC News |
Pass |
Awaiting response |
| Netflix |
Pass |
Vulnerability patched. Password change recommended |
| NYTimes |
Pass |
Awaiting response |
| Outbrain |
Pass |
Vulnerability patched. Password change recommended |
| Pandora |
Pass |
Was not vulnerable |
| PayPal |
Pass |
Was not vulnerable |
| PayScale |
Pass |
Was not vulnerable |
| Pinboard |
Pass |
Vulnerability patched. Password change recommended |
|
Pass |
Vulnerability patched. Password change recommended |
|
| Publishers Clearing House |
Pass |
Awaiting response |
|
Pass |
Vulnerability patched. Password change recommended |
|
| Reference.com |
Not available |
Was not vulnerable |
| Salesforce |
Pass |
Was not vulnerable |
| Stack Overflow |
Pass |
Vulnerability patched. Password change recommended |
| Target |
Pass |
Was not vulnerable |
| The Pirate Bay |
Pass |
Awaiting response |
| The Wall Street Journal |
Pass |
Awaiting response |
| TMZ |
Pass |
Awaiting response |
| TripAdvisor |
Pass |
Was not vulnerable |
| Trulia |
Not available |
Was not vulnerable |
| Tumblr |
Pass |
Vulnerability patched. Password change recommended |
|
Pass |
Was not vulnerable |
|
| UPS |
Pass |
Was not vulnerable |
| USA Today |
Pass |
Was not vulnerable |
| USPS |
Pass |
Vulnerability patched. Password change recommended |
| Vimeo |
Pass |
Vulnerability patched. Password change recommended |
| Walmart |
Pass |
Was not vulnerable |
| Washington Post |
Not available |
Vulnerability patched. Password change recommended |
| Weather.com |
Be on alert |
Awaiting response |
| Wells Fargo |
Pass |
Was not vulnerable |
| Wikia |
Pass |
Vulnerability patched. Password change recommended |
| wikiHow |
Not available |
Was not vulnerable |
| Wikipedia |
Pass |
Vulnerability patched. Password change recommended |
| WordPress |
Pass |
Awaiting response |
| Yahoo! |
Pass |
Vulnerability patched. Password change recommended |
| Yelp |
Pass |
Vulnerability patched. Password change recommended |
| YouTube |
Pass |
Vulnerability patched. Password change recommended |
| Zedo |
Not available |
Was not vulnerable |
| Zillow |
Pass |
Was not vulnerable |