The tech world is abuzz with news this week about Heartbleed a critical programming flaw in OpenSSL—an open source implementation of the SSL/TLS encryption protocol. This flaw had gone undetected for the past two years and might have allowed leaks of data from a server’s memory, which could include SSL site keys, usernames and passwords, and even personal user data such as email, instant messages, and files.
You’ve probably received multiple notices from sites to change your password. These notices are being sent out of an abundance of caution. While there’s no proof that anyone exploited this bug the severity warranted recommending a password change for just about every online account.
Now that password security is in the spotlight let’s review two things you can do to significantly reduce your chances of a security hack. [Read more...]