Heartbleed Update

 

On April 8, 2014, the National Cyber Awareness System announced the discovery of a zero-day vulnerability, called “Heartbleed” within the widely-used web encryption technology referred to as “OpenSSL.” By exploiting this vulnerability, attackers could access sensitive data compromising the security of a server and its users.

Immediately upon learning of this vulnerability S.T.A.R. Community Credit Union contacted its third party vendors to survey our external websites to determine vulnerability and eliminate the threat. Scan results indicate that S.T.A.R.’s member facing applications and external websites do not have this vulnerability.