Just an FYI, have had a few people ask.
Please Note: We are NOT vulnerable to the Heartbleed attack. Our servers do not use OpenSSL for certificate management or to provide SSL services.
To test sites for Heartbleed vulnerability, we suggest using:
https://www.ssllabs.com/
They are a trusted provider of security services that test the vulnerability by actually attempting an attack.
Beware of sites that claim to test for the vulnerability, but they only look for possible signs the site uses potentially vulnerable software, they do not truly test it. This includes https://lastpass.com/heartbleed.
Please Note: We are NOT vulnerable to the Heartbleed attack. Our servers do not use OpenSSL for certificate management or to provide SSL services.
To test sites for Heartbleed vulnerability, we suggest using:
https://www.ssllabs.com/
They are a trusted provider of security services that test the vulnerability by actually attempting an attack.
Beware of sites that claim to test for the vulnerability, but they only look for possible signs the site uses potentially vulnerable software, they do not truly test it. This includes https://lastpass.com/heartbleed.