How to protect yourself from the security bug Heartbleed

By Emily Scarr
State Director

Heartbleed is a recently discovered hole in the security software used by most major websites – everyone from Amazon to Yahoo to eBay – that may have allowed hackers to access consumers’ passwords or credit card information. Websites are now scrambling to fix this bug.

DO NOT rush to change your passwords on all of your favorite websites. You shouldn’t change your password on a site until the site has fixed the Heartbleed bug, or else you risk having your new password compromised. Watch for a notice on the site, but don’t click any links in emails claiming to be from the website.

Instead, use the Heartbleed Checker to see which websites have fixed this security problem. Once sites have fixed the bug, THEN you should change your passwords.

This security hole is an important reminder to be diligent about protecting your data online. You should also always keep an eye on your accounts for any unusual activity. Our tips on how to avoid identity theft can also help you stay safe.

Support us

Your donation supports Maryland PIRG's work to stand up for consumers on the issues that matter, especially when powerful interests are blocking progress.

Consumer Alerts

Join our network and stay up to date on our campaigns, get important consumer updates, and take action on critical issues.
Optional Member Code

Maryland PIRG is part of The Public Interest Network, which operates and supports organizations committed to a shared vision of a better world and a strategic approach to getting things done.