Researchers recently disclosed an online security vulnerability nicknamed the Heartbleed Bug.
The Credit Union has investigated all of our internal systems and validated that none were vulnerable to the Heartbleed Bug.
We have also received confirmation from almost all of our third party service providers that they were not vulnerable.
What is the Heartbleed Bug?
Heartbleed is the nickname given to a security vulnerability in OpenSSL, a popular encryption software used by almost two-thirds of all web servers. The vulnerability could have allowed hackers to obtain passwords, email accounts, user names, and other personally identifiable information during the past two years.
Most online financial services use other modes of encryption and were never subject to this vulnerability.
What Can You Do?
Developers have released a new, secure version of OpenSSL, and servers are being updated with the new software.
The FTC recommends that you first confirm that a vulnerable site has been patched, then log in and change your password. As a best practice, passwords should be unique for each site or service you access, and you should change them regularly.
For more information on fraud and scams, visit the Security Center