The SnapEngage engineering team has been working to assess the impact for our customers in the wake of disclosure of CVE-2014-0160. The vulnerability, known as Heartbleed, is related to OpenSSL, a cryptography library that is used for encrypting a large majority of the traffic across the Internet.
SnapEngage’s systems, including those of our cloud providers, are not affected by the vulnerability or were patched by the providers before the public disclosure of the vulnerability.
Although we have no evidence that any data was compromised, concerned users can take the following additional precautions:
If you have used the same password on multiple sites or services, in order to protect yourself, you should change the password on all services. Note: If any of those services are/were affected by the Heartbleed vulnerability, please make sure that they have patched their systems before you change your password.
Please come chat with us if you have any questions.