I have been receiving questions from a number of customers about the “Heartbleed” vulnerability that has been widely reported by the media. Many customers are concerned as to whether they are at risk by using cloud services from H Tech Solutions and other providers. There a reasonable concern with any IT service when it comes to security. Your provider should be able to answer simple questions about whether a service is vulnerable or not to Hearbleed and what steps are being taken to mitigate the risk.
Let’s take a moment to discuss what “Heartbleed” actually is. It is a flaw in the OpenSSL encryption software library used by many websites to protect customers’ data. The vulnerability, known as “Heartbleed,” could potentially allow a cyberattacker to access a website’s customer data along with traffic encryption keys.
After a thorough investigation, Microsoft determined that Microsoft Azure, Office 365, Yammer and Skype, along with most Microsoft Services, are not impacted by the OpenSSL “Heartbleed” vulnerability. Windows’ implementation of SSL/TLS is also not impacted. This means that the services provided by H Tech Solutions are also not vulnerable to “Hearbleed”. This includes ODS, OWL, and Blue Cloud. Customer data stored with these services is NOT at risk as a result of the “Heartbleed” vulnerability.
GoDaddy is in the process of patching and updating services that use the affected OpenSSL version which is vulnerable to “Heartbleed”. This includes GoDaddy’s servers as well as the shared hosting accounts their customers use to run their businesses. GoDaddy has confirmed that they are securing their infrastructure and ensuring that their customers will remain protected. This means that the domain hosting service provided by H Tech Solutions is protected against the “Heartbleed” vulnerability.
If you have any concerns about the security of the service, please contact H Tech Solutions using the URL below.