The Heartbleed security flaw
Date published: 4/10/2014
Information about the Heartbleed Bug
An internet security flaw known as the Heartbleed Bug has been discovered that affects nearly two thirds of all websites. The Heartbleed Bug allows an attacker to steal information such as usernames, passwords, and other personal data from a web server that has not installed the latest security patches.
With guidance from the UCLA Information Security Office, Psych IT has worked closely with Life Sciences Computing to fix the flaw on affected psych.ucla.edu web servers.
Users of popular web services such as Facebook, Gmail, and Pinterest are advised to change their passwords on those websites as soon as possible. For more information about how the flaw impacts users of these, and many other websites, please see this mashable.com article.
Please visit heartbleed.com for a complete technical explanation of the Heartbleed Bug.
Update (4/11/14): Campus IT Services recommends that you change the password to your UCLA Logon ID by going to https://logon.ucla.edu/passchange.php
Confirm that non-UCLA websites you use have checked their systems and fixed them if needed. Once fixed, change your password. Clear any previously saved passwords from your browser's cache. Contact our Help Desk if you'd like assistance.
More detail on Heartbleed from UCLA IT Security Office