What The Heartbleed Bug Has Hit And A List Of Passwords You Need To Change

Photo courtesy of CNET
Photo courtesy of CNET

If you haven’t heard about the “Heartbleed” bug by now, chances are many of your accounts are highly vulnerable to security threats right at this moment.

The “Heartbleed” bug mainly affects the widely popular open source encryption platform OpenSSL. In other words, over 2/3 of the internet uses OpenSSL to encrypt data and information, further affecting over 500 million websites on the internet.

Although the bug was made known aware on Monday, Codenomicon and Google has noted that the bug has been around for two years now. However, the “seriousness” of the issue isn’t the major concern.

“You are likely to be affected either directly or indirectly,” Codenomicon said. “OpenSSL is the most popular open source cryptographic library and TLS (transport layer security) implementation used to encrypt traffic on the Internet. Your popular social site, your company’s site, commerce site, hobby site, site you install software from or even sites run by your government might be using vulnerable OpenSSL.”

A patch has been released to fix websites using OpenSSL since Monday, but security experts are saying that it may not be enough and still recommend people to change their passwords and security information.

Putting this in the simplest form: change your passwords now if you haven’t already. We have collected a list of some major websites that have been affected and that you should look into changing your passwords for, courtesy of Mashable.

Social Media:

  • Facebook
  • Instagram
  • Pinterest
  • Tumblr
  • Twitter (unclear)

Other Websites:

  • Apple (unclear)
  • Google
  • Yahoo


  • Gmail
  • Yahoo Mail

Stores & Commerce:

  • Amazon Web Services
  • eBay (unclear)
  • GoDaddy


  • A majority of the banks do not use OpenSSL, and instead, use another type of encryption platform

Government & Taxes:

  • Intuit/Turbo Tax


  • Dropbox
  • Minecraft
  • OKCupid
  • SoundCloud
  • Wunderlist

If you know of any other major website or company that has been affected, please share with us in the comments below.