Security Advisory: Heartbleed

A major security vulnerability has been recently discovered in OpenSSL. OpenSSL is the most popular cryptographic software library for securing communication on the internet. CVE-2014-0160, also known as Heartbleed, was disclosed to the public on April, 7.

The Heartbleed bug allows attackers to access parts of a server’s memory and could therefore be used to steal information including passwords, session IDs or even the server’s private encryption keys.

How does this affect my ezeep account?

After learning about the issue in the early morning (CEST) of April 8, we patched all affected systems within an hour. Although there is no reason for us to believe that any data has been compromised, we’ve taken additional precautions: We’ve re-keyed our SSL certificates and revoked all user sessions. You may have been logged out from ezeep and need to login again.

In light of this widespread security vulnerability we highly recommend that you change your password on ezeep and all other web services that might have been affected.

If you have any questions or concerns, contact us anytime at help@ezeep.com