Since the announcement of the Heartbleed bug a few days ago, the Internet has been swamped with information and speculation about the security vulnerability. ClickDesk users can rest assured that Heartbleed did not affect ClickDesk. We proactively applied patches to all of our servers, and we didn’t find any of your ClickDesk data to be compromised.
The Heartbleed bug, technically known as CVE-2014-0160, has caused such a stir with good reason: it is a serious vulnerability in the popular OpenSSL cryptographic software library, and SSL/TLS provides communication security and privacy over the Internet for a ton of apps. SSL stands for Secure Sockets Layer and is also known by the newer name Transport Layer Security (TLS). SSL/TLS is the most basic means of encrypting information on the web, basically ensuring (or trying to ensure…) that nobody can eavesdrop on your data transfers and communications.
Strangely, Heartbleed was discovered on the same day by a Google researcher and a security firm, working independently. Luckily they found it before hackers did, so sites big and small have been able to patch their servers proactively. However, if you use the same password on multiple sites, we do recommend changing the password on those sites (though only after the sites have been declared safe from Heartbleed). If you want to know more about Hearbleed, check out this excellent Cnet article. It gives a good rundown of the Heartbleed story and answers FAQs about the bug.
Thanks for being a part of the ClickDesk family. If you have any questions or concerns about Heartbleed, just drop us a line.