Heartbleed Bug: CheckMarket not affected

On April 7, 2014, a team of security researchers announced the discovery of a critical vulnerability dubbed “The Heartbleed Bug”, found in OpenSSL (a widely-used open source cryptographic software library), which allows attackers to read the memory of the systems using vulnerable versions of OpenSSL software.

Data security is our top priority

The security of our customers’ data is a top priority and we continuously strive to offer you a stable and secure environment in which you can manage your surveys and panel data. CheckMarket IT staff have investigated this issue and are happy to report that our websites and your accounts are not at risk from this bug.

We use another SSL implementation to secure our website traffic, which is not affected by this issue in any way. The underlying infrastructure has also been thoroughly revised by our provider and they have made sure that this vulnerability cannot impair our systems.

Should I change my CheckMarket password?

Since our websites have not been at risk of the Heartbleed bug, a password reset is not necessary. However, in general, changing your password on a regular basis, is a best practice which we strongly recommend. When you do so, make sure that you choose a strong password. Using numbers, symbols and mix of upper and lower case letters, makes it much harder for someone to guess your password.

How can I give my account additional security?

Use our 2-step verification to drastically reduce the chance of someone breaking into your account. It allows you to add an extra layer of protection to your account by having you authenticate in two steps. In addition to a username and password, you will need to enter a code sent via SMS or a mobile app, which is only valid for a short period of time.

Learn how to sign in with 2-step verification: How do I sign in with 2-step verification?

More questions?

Feel free to contact us at [email protected] if you have any additional questions related to the Heartbleed bug!

Laisser un commentaire

Votre adresse e-mail ne sera pas publiée.