Harmony and Heartbleed
Post Information
Posted on April 15, 2014
By Jason Roelofs
On April 7th, security researchers publicly disclosed a serious security vulnerability now known as Heartbleed. This vulnerability affected a vast majority of the Internet and made it possible for attackers to potentially gain sensitive information from sites protected by SSL.
Unfortunately Harmony was vulnerable to Heartbleed. We immediately took steps to fix this issue, including resetting User sessions and replacing our SSL certificate. Harmony is no longer vulnerable, and through our investigations we have not seen any evidence that any information was stolen. That said, as a precaution we do recommend changing your account password, not only on Harmony but on other sites you visit across the Internet.
We would also like to recommend, if you aren’t already, using one of the many password management tools available today, such as 1Password, Keeper, PasswordBox, LastPass, or KeePass.
great turnaround time.
Really an awesome post. I wondered by reading this blog post. Thanks a lot for posting this unique post which you have shared with us. Keep on posting like this exclusive post with us.
Assisting users of get.harmonyapp.com with an addition to LastPass, which you recommended
Hello there ,
I was using LastPass, which you mentioned on your page here: get.harmonyapp.com/blog/harmony-and-heartbleed/
It’s so great that you shared it. But what I found is that I’m just picking bad passwords (“iloveyou123”), and LastPass will only be able to help me remember this bad password.
After some digging, I found a tool that I recommend sharing on your page also. This complementary tool generates random high encryption passwords. www.vpnmentor.com/tools/secure-password-generator/
In hope I helped back,
Kaylee