A major vulnerability in the technology that powers encryption across much of the internet was made public on April 7th, 2014. It has been called the Heartbleed bug. Like many other teams, we took immediate action to examine our systems for any vulnerability in our infrastructure. We can report that we made appropriate patches quickly and are safe from this vulnerability. However, we strongly recommend that you change your Mvelopes password.
Frequently Asked Questions
Q: What is Heartbleed?
A: Heartbleed is a bug that causes a serious vulnerability that could expose a user’s passwords to hackers who take advantage of them. To learn more, go to http://heartbleed.com/
Q: Is my information safe?
A: Yes, Mvelopes is safe. However, your information on other websites may have been exposed. Please look for information on those sites to know if you were at risk. Additionally, if you use the same username and password on Mvelopes that you do on other websites, your password may have been exposed on those sites, and we would recommend changing it in here to be safe.
Q: I ran a heartbleed checker on another site, and it didn’t have information about Mvelopes. Why is that?
A: Some checkers do not return correct results or time out. We have no control over those sites but have reviewed our systems and Mvelopes.com, our APIs, and our apps are clear.