You may have seen news recently about the “Heartbleed" bug that has caused a vulnerability in OpenSSL, a security technology used by roughly two-thirds of all websites on the Internet.

First, and most importantly, any data (passwords, credit card or bank account numbers) you have stored in My Eyes Only 7, My Eyes Only Classic, or Password Manager Vault, has not been compromised. The data is encrypted on your device and is protected with a second layer of encryption when stored on our Syncryption™ servers.

Because Software Ops secure server provider uses OpenSSL to secure the communication from your mobile device to Syncryption™ services we were, unfortunately, affected by this bug. However, our secure server provider has fixed the Heartbleed bug on all of the servers that host our services that use OpenSSL. This was completed early in the morning of April 8th. We have also decided to implement the additional safeguard of reissuing all of our SSL trust certificates - just in case.

While we have not detected any compromise of the security in our systems, we are asking you to change your Syncryption™ password because of the Heartbeed vulnerability.  Please change your Syncryption™ password as soon as possible. Below are details of the OpenSSL vulnerability and how to change your Syncryption™ password. Your access password does not need to be changed.

My Eyes Only 7

  1.  Open the application and select the Sync Tab.
  2. Select Change Password and enter in your Current Sync Password, then enter in your New Sync Password.
  3. Re-enter the New Sync Password to confirm and select Set in the upper-right corner.

My Eyes Only Classic/Password Manager Vault

  1.  Open the application and select the Tools Tab, then select Syncryption Service.
  2.  Select Change Password and enter in your Current Sync Password, then enter in your New Sync Password.
  3.  Re-enter the New Sync Password to confirm and select Set in the upper-right corner.

To learn more about the Heartbleed bug and what measures you should take for your other applications and services we recommend to review the following websites:

Heartbleed.com (http://heartbleed.com)

The Heartbleed Hit List: The Passwords You Need to Change Right Now (http://mashable.com)

Here’s Everything You Need to Know About the Heartbleed Web Security Flaw (http://gigaom.com)

Comment