Name is required.
Email address is required.
Invalid email address
Answer is required.
Exceeding max length of 5KB

OpenSSL Heartbleed bug

Apr 09, 2014 08:59AM EDT

Has Hellowallet been patched for the OpenSSL Heartbleed bug that could allow access to passwords?

HelloWallet Support Answer

Apr 10, 2014 11:25AM EDT
Holly
HelloWallet Support

I’m very glad you posted this question. I’d like to share a quick message that our CTO shared with our staff yesterday regarding the Heartbleed SSL issue:

“Fortunately for us, we have been very conservative about upgrading the operating system and core software on our production servers. This conservative strategy for upgrading our software infrastructure has saved us from being vulnerable to the Heartbleed Bug. In other words, our current operating system software (CentOS) and SSL implementation are versions that are NOT vulnerable to the bug. We have confirmed this via actual testing. You can read more about the Heartbleed Bug at http://heartbleed.com/

It’s important to note, however, that while we’re conservative, we’re constantly evaluating security alerts and applying fixes as necessary."

We will be posting some additional information very soon regarding HelloWallet and the Heartbleed Bug via our Member Blog so please stay tuned there as well if you’re interested in knowing more.

This question has received the maximum number of answers.

Can't find what you are looking for?
Post a Public Question
394f09daf7261e38402495676f2d372d@hellowallet.desk-mail.com
https://cdn.desk.com/
false
desk
Loading
seconds ago
a minute ago
minutes ago
an hour ago
hours ago
a day ago
days ago
about
false
Invalid characters found
/customer/en/portal/articles/autocomplete