Michigan Tech IT has set up a web page describing the Heartbleed vulnerability and what you should do about it. The page can be found at: https://sites.google.com/a/mtu.edu/heartbleed—what-you-need-to-know/.
Here are some important points:
- Don’t panic! If you haven’t used a site since Monday April 7th, your information at that site probably isn’t at risk.
- If you have used a vulnerable site since April 7th, you should change your credentials on that site, but only after they have patched their system. The IT site listed above has the steps that you should take prior to changing your password so that you don’t put your account at further risk.
- There are many phishing/spam messages being sent to users trying to leverage the media attention regarding Heartbleed to convince you to visit their site and enter your credentials. They will often appear to be your bank or other major online sites telling you that you need to update your account.
Questions? Please contact IT at email@example.com or call (906) 487-1111.