You may have heard over the past day or so about the Heartbleed bug — a software vulnerability that could potentially affect sites using OpenSSL (which is a means of encrypting information you send from an app or website to a server). This is a particularly nasty bug in that someone could hack into sites using OpenSSL and leave no trace.
We use OpenSSL to encrypt information sent from our app and web site to our servers — including your email address, username, and password. Was data on Showyou compromised in any way by this bug? Like every other site and service that uses OpenSSL, we have no idea. We don’t think so, but we just don’t know.
So, if you have set a password on our site, the safest route would be to change it now just in case (we upgraded our site and servers this morning with a fix for the Heartbleed exploit). You can do that here:
You can also change your password within our app — just open up the settings panel and tap “edit profile.”
Exploits like Heartbleed are a reminder that the best practice is to have different — and strong — passwords for the sites and services you use on the Internet. Especially sites where you store important personal information. Here’s a good blog post on that from the folks at Google.
If you have any questions or concerns, please let us know. Best ways to reach us are:
@showyouapp on Twitter
@showyouapp on Facebook