The Heartbleed Bug

As I’m sure most have heard by now, a critical vulnerability in the popular OpenSSL cryptography software was announced this week. Nicknamed the Heartbleed Bug, it affects most versions of OpenSSL and the widely used open source web servers Apache and nginx. An estimated 66% of all websites were vulnerable to the bug. If you want to find out everything there is to know about Heartbleed, I encourage you to visit If you’re looking for the short version, I found this CommitStrip comic helpful:

Heartbleed Comic

FreshAddress’s Response:

Luckily, FreshAddress only had one system affected by Heartbleed  and it was one that didn’t contain sensitive information like usernames and passwords. This system has been patched and we have reissued SSL certificates to the affected service.

General Advice:

For all sites where you use login credentials, be sure to check with that site to see if they were vulnerable to Heartbleed. If they were, you should update your credentials (ONLY after the site has confirmed they have patched the bug) with a strong password – choose something at least 8 characters long using a mix of upper and lowercase letters, as well as numbers and symbols. Also, if you use the same username and password for all of your sites holding valuable information, now is the perfect time to remedy that. A service I personally use and recommend to manage passwords is LastPass. LastPass also has a nifty tool to help you determine if sites you use are vulnerable:

Recent Posts

Time for a pop quiz! Which is more important for email success: clean data or solid creative? Okay, we admit it – that’s a trick question. You need both – and more – to build an email program of campaigns that engage, convert and deliver the results you want. Geoff Wolf, Executive Vice President Client […]

FreshAddress had the chance to volunteer at Rosie’s Place in Boston last week as part of our 20th anniversary celebration. Thirteen of our team members worked alongside Rosie’s staff to prepare lunch for more than 150 people. Simply put, they put us to work! We chopped vegetables, served meals, cleared tables, washed dishes and much […]

Calling all Bronto customers! We’re excited to announce that SafeToSend is now integrated with Bronto! If you’re using automated SafeToSend, you can now connect your FreshAddress Client Portal account with your Bronto account. This allows you to easily upload your lists and segments for SafeToSend processing and import your results back into Bronto without ever […]
Chat with us