Thank you for the update! It’s always nice to hear info like this first hand rather than wondering if the lists of compromised companies popping up everywhere are truly accurate. I appreciate it!

Thank you for the update Barry, and for letting us know that WordPress takes security seriously and that WordPress has taken steps to protect us from this bug and other threats. :)

-John Jr

Thanks to the technical personnel at wordpress.com. Your nimble response to the heartbleed crisis is much appreciated.

Reblogged this on one cool site and commented:
Thank you so much for addressing this security issue promptly by patching the servers, replacing all SSL certificates and private keys and more. It’s appreciated.

Reblogged this on Wendomattic and commented:
Here’s the latest update on the Heartbleed bug from WordPress.com:

Good article. Thanks so much as always. :-)

Thanks for this: very reassuring …
er, assuming you are who you say you are
;-)

Thanks for the peace of mind! :;)

Reblogged this on MacManX.com and commented:

In short, you’re safe at WordPress.com, but occasionally changing your passwords and always using a strong password are great practices to follow.

It’s not required that you changed your password, but it can’t hurt anything.

Reblogged this on My Meals are on Wheels.

Indeed – I saw the report. I think sites that left their servers un-patched for days after the public disclosure are in the most trouble. It’s also possible that this vulnerability was widely exploited in the 2+ years the bug existed and we just don’t know yet. We will keep a close eye on things and make changes to our policies and recommendations if needed.

Reblogged this on John Reynolds CSUF MGMT 465B and commented:
It is so sad that we are in a society of virtual thieves preying on us. The big problem is we aren’t safe until the hosts update their software. Very frustrating! Let’s hope they get it handled quickly. These cyber attacks are making me rethink what I do online anymore.

There is some great software out there that helps you manage your passwords online:
* 1password – https://agilebits.com/onepassword
* LastPass – https://lastpass.com/
* Keepass – http://keepass.info/

If you use the same password on multiple sites and one of those sites failed to patch their servers in a timely manner then it’s possible you could be more vulnerable than if you use a unique password for each site. If you are concerned about it I would just go ahead and change your password – it can’t hurt.

We don’t think you need to change your password again. But if you are concerned, it’s pretty easy to change, so I would just go for it.

Thanks for the update. I’ve been a bit worried for quite sometime. In fact, I’ve changed passwords in some of my social networking accounts already. It’s a good thing I can really rely on WordPress to keep the security walls up. Thanks!

It’s always a good idea to enable two-step verification :) If you use the same password multiple places on the web, we recommend that you change it. Otherwise, it’s really up to you. Changing your password is pretty easy and if creates peace of mind, then it’s worth it.

Reblogged this on Sharks' Pond 2014.