MADISON, Wis. (4/16/14)--The Credit Union National Association's information technology team assures that CUNA's customer-facing websites are not impacted by the Heartbleed security issue that has been reported in News Now and the general press.
CUNA Vice President of IT Tom Nohelty said Tuesday that CUNA is applying all Heartbleed patches to applicable systems, even to environments not currently using the Open Secure Socket Layer (OpenSSL) technology at issue with the Heartbleed "bug."
"This extra measure will prevent any future problems if we choose to implement OpenSSL at a later time," Nohelty explained.
The Heartbleed threat is a flaw in the OpenSSL technology that is used to establish secure links between servers and users. Although CUNA and many credit unions have been able to assure their web users in the face of the security threat, Heartbleed has reportedly exposed millions of usernames, passwords and other information.
In general, Nohelty said, CUNA would recommend that all users of its website change their passwords on a routine basis to protect themselves and their personal data as these kinds of security issues will continue to present themselves.