Information about the Heartbleed bug and Clickteam's web services
As many of you will now be aware, news of the recent HeartBleed bug has rocked the Internet, sparking fears about safety of data over secure SSL (https) web connections (normal http pages are not affected by this issue).
The bug relates to a recently revealed flaw in OpenSSL, a commonly used cryptographysystem to gain access to data which is supposed to be inaccessible on a web server, namely the security certificates used to ensure that connections over http are protected from eavesdropping. The flaw potentially allowed hackers to gain access to sensitive user and server data, including user names, email addresses and passwords.
Thankfully, there is no evidence that this happened on the Clickteam servers. We have patched our systems to protect against this attack which you can verify here: https://www.ssllabs.com/ssltest/analyze.html?d=shop.clickteam.com
The general advice being given globally is that users should take the precaution of changing their passwords for any secured services, once the website has updated their systems and certificates. We have done both things so if you wish to follow this advice, please proceed. If you used the same password in other places, it is recommended that you also update it there too.
You can find more information about the Heartbleed bug here http://en.wikipedia.org/wiki/Heartbleed
lire en franšais:http://community.clickteam.com/threads/86547-Clickteam-et-Heartbleed