A Note to All TM2sign Users Regarding
the "Heartbleed" OpenSSL Vulnerability
You may be hearing about the recent discovery of a defect in systems that use encryption to protect sensitive information in internet communications called "Heartbleed" OpenSSL vulnerabiliy. The Heartbleed flaw affects a substantial number of applications and services running on the Internet, including TM2sign.
We want to let you know what we've done about this security defect in the OpenSSL systems we use. Within hours of learning of the flaw from the technology community, we secured all our servers and applied the security patch for the Heartbleed issue. As of this morning, we revoked, re-keyed and re-issued all our SSL certificates as a matter of best practice. We received new SSL certificates and applied them to all our servers. We routinely apply all security patches to our servers as they are issued and will continue to do so.
We have no evidence that TM2sign user credentials were compromised, but we recommend to our users that you change your password in TM2sign as a precautionary measure the next time you use TM2sign. Further, we recommend that you use a password that is not being used for other services.
If you have concerns related to the security of your TM2sign account, please contact us at firstname.lastname@example.org.
Share your Crossroads memories with us on our Facebook page!
Want to know more about Crossroads? Follow us on Twitter (@crossroadsvb), like us on Facebook, sign up for our newsletter (see the box below), or keep checking back here.
Click Here for past issues of CROSSROADS CONNECTIONS, our free newsletter