The Heartbleed flaw has led to considerable concern among end users regarding what they need to do next. In this presentation, Elastica CTO Dr. Zulfikar Ramzan provides guidance on what end users need to do to best safeguard their data.
4. 2
UPDATE PASSWORD
If the site has implemented the Heartbleed
patch, then log in and change your password
5. 2
Image source: marc falardeau http://goo.gl/CsPgO4
If you change your password and the site hasn’t been
patched, then you’re giving a hacker a new password
7. 3
LENGTH
Passwords should
be at least 8
characters long
A strong password
is 12-14 characters
long
COMPLEXITY
Passwords should
be a combination
of letters, numbers,
symbols, upper and
lower case
9. 4
Email Provider: First, change the password for your main
email provider. If your email password is compromised,
other passwords can be easily accessed.
Critical services: Second, change the passwords for sites
that store critical data like banks and financial institutions.
Many institutions already have safeguards in place against
fraudulent transactions.
Update software: A good practice is to update to the latest
versions of software.
11. 5
Don’t assume that your data is safe.
Beware of fraudulent mails offering instant patches.
Be vigilant, don’t let attackers take advantage of your
nervousness.
Preferably avoid using outdated software as they are
more vulnerable to threats.
Be aware of threats from data breaches, malwares
and malicious software.