Dear REACH Users,
In light of recent events, where serious vulnerability in OpenSSL protocol was discovered (nicknamed “Heartbleed”), we would like to inform you that our servers and security hasn’t been breached and that your data is safe with us.
The Heartbleed Bug allows stealing the information protected by the SSL/TLS encryption used to secure the Internet. SSL/TLS provides communication security and privacy over the Internet for applications such as web, email, instant messaging (IM) and some virtual private networks (VPNs).This allows attackers to eavesdrop on communications, steal data directly from the services and users and to impersonate services and users. It is assumed that 66% of all websites across the Internet are affected.
This bug has shown that in some cases usernames, passwords and other protective data entered on affected sites and services can be easily compromised.
REACH was developed with security in mind so this means that by using REACH your data is safe and you are not exposed to Heartbleed vulnerability.
We have further reading for your information:
Protect Your Systems From ‘Heartbleed’ OpenSSL Vulnerability
Man who introduced serious 'Heartbleed' security flaw denies he inserted it deliberately