Time to change those passwords...



A new bug has been discovered on the internet, called the Heartbleed Bug. The basic idea is that it allowed hackers to steal information from servers that you thought were protected behind a secure (https) connection. That information could include usernames, passwords, credit card information, or anything that you've submitted in a form. Over 2/3 of the servers on the internet use OpenSSL which is the library that this bug was found in.

Subeta is safe. We're fortunate to be protected by cloudflare who was alerted to this bug a week before it became public, and has already patched it. It's very unlikely that any of your information has been stolen from Subeta.

Unfortunately there are a lot of sites that hadn't fixed their implemention of openSSL when the information was made public. This includes some google services, yahoo mail, imgur, and other sites that most of us use daily.

It's our suggestion that you change your passwords everywhere, including Subeta. Before you change your password on a website, check it here to ensure that it's no longer a threat. If you change your password and the site is still unsafe, you could be submitting your password to hackers again!

OpenSSL put out a patch as soon as the bug was made public, and most sites have already begun to patch and fix their servers. Most major sites on the internet have already been patched. You can read more about the bug here. Thank you, and stay safe on the internet! ❤

Here is another great writeup of this bug.
April 11, 2014, 11:32 am by MOKONA
Avatar Border
User Avatar

sigh So many passwords to change. But about time too anyway, haven't edited them in a while...

Thank you for us about it Keith! :D:D

April 10, 2014, 2:56 pm by Bliss
User Avatar

Thanks for the heads up!

April 10, 2014, 2:38 pm by Wings_In_Poetry
User Avatar

Thanks so much for this!

April 10, 2014, 1:56 pm by Rii
Avatar Border
User Avatar

I saw that on Facebook...already changing my gmail passwords. I was worried about Subeta but I'm glad to know it's already patched. Just gotta think of a unique password to replace the old one I won't forget...

Thanks for the reminder!

April 10, 2014, 9:43 am by DarkVixen28
Avatar Border
User Avatar

I don't even know all what sites I belong to anymore...o.O' New goal! To keep a little account journal squirreled away somewhere so I know what accounts I have when things like this happen.

April 10, 2014, 9:04 am by bulleta
User Avatar

Luckily I don't visit a lot of sites My mom, however, is online shopping queen fucking shit

April 10, 2014, 8:48 am by pumpkins
Avatar Border
User Avatar

For Chromeusers, there's also the Chromebleed extension that you can get, which warns you if a site you've visited has been affected :)

April 10, 2014, 8:05 am by Sianach
User Avatar

Thanks for letting us know, Keith. I'm really grateful that you take the time to do this for us. (:

April 10, 2014, 7:49 am by LOUD
User Avatar

Thank you for the infos.

April 10, 2014, 7:41 am by Rowan
Avatar Border
User Avatar

Thanks for the reminder bro.

April 10, 2014, 7:26 am by Trees
Avatar Border
User Avatar

I don't really want to change my passwords cause I'll most likely forget...most of the sites I use are apparently safe anyway...

April 10, 2014, 7:03 am by The_Rasmus
User Avatar

Thank you so much for letting us know!!

April 10, 2014, 6:38 am by Lyric
Avatar Border
User Avatar

After reading conflicting posts from users can we get an official update clarifying the changing of passwords or waiting?

April 10, 2014, 5:34 am by lull
Avatar Border
User Avatar

Thank you Keith. I'd never know bout stuff like this if you didn't bring it to our attention hugs

April 10, 2014, 5:18 am by wild_jester
User Avatar

O_O thank you for this info

April 10, 2014, 3:24 am by Ghini
User Avatar

Wow o.o thanks for the heads up. It will take... a few weeks at least for me to remember all the sites I have accounts on o_O It must be over 100, and some I haven't logged into in months or years. I guess a lot of those aren't really important so if they get hacked, hopefully there aren't really bad consequences.

April 10, 2014, 3:14 am by Takks
Avatar Border
User Avatar

Thanks for letting us know!

April 10, 2014, 1:50 am by Eiji
Avatar Border
User Avatar

Thank you very much for the information, Keith!

April 10, 2014, 12:53 am by Merlin
Avatar Border
User Avatar

I hadn't even heard about this. crazy

April 10, 2014, 12:47 am by L0stS0ul
User Avatar

I heared on the radio that the leak has been existing for the past two years. So I dunno, if hackers wanted to steal anything, they had two years to do it

April 10, 2014, 12:34 am by Finnie
User Avatar

& FCOD

I believe if a website is listed as "no SSL" it means it's using a different protocol other than SSL for its server security.

April 9, 2014, 11:58 pm by operationivy
User Avatar

Bad, bad news for everyone of course. I changed my password here and I'm changing all my passwords and other information all over the internet.

April 9, 2014, 11:51 pm by BULLET
User Avatar

I appreciate the warning and update. :)

April 9, 2014, 11:47 pm by Noelle
Avatar Border
User Avatar

Silly question. If a site says it has no SSL does that mean it is vulnerable and that I should still change my password on those particular sites?

April 9, 2014, 11:43 pm by Chef
Avatar Border
User Avatar

Thank you for this. I was going back and forth as to if I wanted to change everything, which is A LOT, and after reading this, I'm working on doing that right now!

April 9, 2014, 11:33 pm by Kilala
User Avatar

Thank you so much for this information, Keith! I am about to change every single PW I have on all the sites I visit, which thankfully isn't too many XD.

April 9, 2014, 11:28 pm by TJPanda
Avatar Border
User Avatar

Thank you Keith for the update. I'm glad to hear the site is safe.
I wasn't aware of what was going on until I saw this news post ^_^.

April 9, 2014, 11:27 pm by 8=8
User Avatar

Thanks for the headsup ❤

April 9, 2014, 11:11 pm by LunaWolf
User Avatar

Thank you for the notice, I was wondering why in the last week i have been having a major issue on my laptop and had to keep running scans and cleaning up daily

April 9, 2014, 11:07 pm by FCoD
Avatar Border
User Avatar

Just a question that I don't understand, using 's link to the list of sites what about the ones that say no SSL, are they vulnerable or not?

Sorry if that seems dumb. :)

Also thanks for the heads up.

April 9, 2014, 11:07 pm by Targaryen
Avatar Border
User Avatar

Thanks for telling us and where to check! Glad Yahoo and Google is patched!

April 9, 2014, 11:02 pm by Alenwen
Avatar Border
User Avatar

I heard this on the radio yesterday D; Thanks for providing all the information!

April 9, 2014, 11:00 pm by amethyst227
Avatar Border
User Avatar

Thank you so much for the info.

April 9, 2014, 10:47 pm by Shamte
User Avatar

Thanks so much for notifying us! I had no idea this was even happening. ):

April 9, 2014, 10:35 pm by QueenOfImladris
Avatar Border
User Avatar

Well...just changed all the main ones, I'll do the rest as I remember them. I'm on so many sites (a lot of which I don't even visit monthly, let alone daily) that it'd be impossible to do them all in one evening. <_< Thanks for that link to test the sites, it'd suck changing it just to have to change it again days later.

April 9, 2014, 10:27 pm by Anberlin
Avatar Border
User Avatar

It's really good to see so many sites taking this seriously.

April 9, 2014, 10:24 pm by techn0witch
User Avatar

Virus, check using the link provided. :u

April 9, 2014, 10:24 pm by Zay
Avatar Border
User Avatar

Thanks for letting everyone know, I know there were at least a few users who weren't aware of the situation! Thank you for keeping everyone in the loop!

April 9, 2014, 10:23 pm by foxette
User Avatar

This is scary stuff. Bravo Subeta for being on top of it!

April 9, 2014, 10:22 pm by Damon
Avatar Border
User Avatar

Does anyone know if paypal is safe?

April 9, 2014, 10:20 pm by Pagan
User Avatar

I continue to be impressed and more impressed by Subeta's proactive ethics and communications. Thank you all. Feeling safe, and feeling like someone is keeping an eye on these issues and promptly and clearly addressing them is such a pleasant change for me!

April 9, 2014, 10:20 pm by honey_bear
Avatar Border
User Avatar

Ah, ok. Thanks for the clarification. Appreciate it :). And thanks for posting about this. :)

April 9, 2014, 10:20 pm by azazel
User Avatar

Thanks for alerting people about this. I'm sure there were/are quite a few who were not aware.

April 9, 2014, 10:19 pm by Lisa
Avatar Border
User Avatar

Okay, changed everything. Except my Apple/iTunes password...should I change that one too? I don't know if that would be included...

April 9, 2014, 10:15 pm by Robin
Avatar Border
User Avatar

That's hella scary. Thank you so much for warning the people who weren't aware of this, I really appreciate it.

April 9, 2014, 10:11 pm by Sirensong
Avatar Border
User Avatar

I've been following this story too and was very pleased too see that when I checked Subeta was listed as safe. The site my hubby spends all his time on isn't.

April 9, 2014, 10:05 pm by Hyena
User Avatar

Oh blergh. Thanks for the warning!

April 9, 2014, 10:02 pm by sikkykins
Avatar Border
User Avatar

this suuuucks. the news says it's found hundreds of yahoo usernames and passwords. (i am a frequent yahoo user too.) what a pain. :| thanks for the heads up. luckily i never put out card/address info online i suppose...

April 9, 2014, 10:00 pm by Finnie
User Avatar

You should honestly be changing your passwords every few months anyway, it's just good practice.

Leave a Comment

Use @username to mention someone. Supports markdown formatting.