April 11, 2014
FOR IMMEDIATE RELEASE
COLORADO SPRINGS, Colo. — On April 7, 2014, a major vulnerability to Web site encryption was announced by OpenSSL, a cryptographic software library. This vulnerability, nicknamed Heartbleed, affected encryption across much of the internet. Like many other technology teams, we took immediate action to patch this vulnerability.
The Alliance is no longer vulnerable to Heartbleed.
We have no evidence of any Alliance accounts being compromised and have taken additional action to insure account security. We encourage you to change your password not only on your MyCMA account but everywhere, as this has affected many of the Web sites you use each day.
Visit the forums if you have any questions related to this topic.
# # #