if you haven't had issue to this point....

A shame about Dropbox - as it's useful - and i'm sort of mandated to use it in a limited way for work.

Bryant

Look at all the social media crap on that list. 'Glad that I have abstained and deleted google account a year or more ago.

unfortunately, that follows the barn door being open for two years. Sigh....

nt

Thank you.

When your employer requires you to use Dropbox, I don't think it is quite that simple of an action to just delete Dropbox.

Change your password.

While it's not my employer, nor do I use it, the person that has to use it did the password change.

I'm in very good shape overall. No social media, only one or two others like gmail and google. Easy enough to change those.

procrastinating, but now it's gone.

Period. Everything that is accessible via the Internet can be hacked into. The encryption used on the Internet is between the web browser and the web server. The data on your hard drive and at the web server storage is not encrypted. A hacker can gain access to steal the database of information from the web server & the cloud. If your smart you will put a credit freeze at all 5 credit reporting agencies and at the IRS with Form 14039. Otherwise in the near future you will be in the hell of ID theft and be stuck writing letters and submitting endless affidavits for years to come. You're lucky if you act today. I was first an ID theft victim 20 years ago and there was no protection for me like there is for you today, so be smart and protect yourself and your family by acting preemptively.

...keep in mind that, as of now, there still haven't been any information leaks traceable to this bug prior to it's public announcement. A number of log searches were initially thought to have revealed evidence of Heartbleed scans prior to that announcement, but all have now been traced to other unrelated security scans. The only claimed exploit, at this point, is the unnamed anonymous source who claimed that the NSA used it. Given the braggadocio that tends to surround many hacking groups, it's hard to believe that nobody has revealed their use of the bug yet.

It's increasingly looking like we may have dodged a bullet. It's like coming home after a long day at work and realizing that you forgot to lock your front door after leaving for the morning. Sure, it was a massive security hole and someone could have robbed you blind, but that doesn't necessarily mean that someone did.

Given what I do for a living, I'm watching closely for reports of confirmed attacks from the bug. So far, all of the confirmed attacks seem to have popped up AFTER it was announced.

But change your passwords anyway.

Or so they say.