15 April 2014 - 8:36am | posted by | 0 comments

Up to 1.5m Mumsnet members hit by Heartbleed bug

Up to 1.5m Mumsnet members hit by Heartbleed bugUp to 1.5m Mumsnet members hit by Heartbleed bug

Parenting forum Mumsnet has warned all 1.5m members that their accounts may have been compromised by the so-called Heartbleed bug – including Justine Roberts, the site’s own co-founder, whose username and password were amongst those stolen.

Roberts conceded that there was no way of knowing how many of its 1.5m registered users were affected and instead called on all users to update their passwords as a precaution.

Roberts said: "Last week we became aware of the Heartbleed bug and immediately applied a fix to close the OpenSSL security hole (known as the Heartbleed patch). However, it became apparent that users’ data submitted via our login page had been accessed prior to our applying this fix. As a result we decided to require all registered Mumsnet users to change their passwords. We have no way of knowing which or how many accounts were affected but have advised users to change passwords on other sites particularly if they use the same password on Mumsnet as elsewhere.

"The security of our users' data is of paramount importance to us; we collect very little of it, and we never pass or sell it on to without people's explicit consent. Heartbleed has shown that nobody can offer a 100% guarantee of online security, but we'll continue to do our best to protect our users as much as we can, and be transparent about any breaches we find.”

Heartbleed was first identified last week and takes the form of vulnerability in the open source code used by thousands of websites, including Mumsnet, which offers hackers back door access to restricted information.

Amongst those sites to report security breaches arising from the coding flaw are the Canadian tax agency, OKCupid, Eventbrite and the FBI’s website.

Be the first to comment on this article: sign in or register.

Latest Projects from the Profile Hub

THE CO-OPERATIVE BANK BRAND ADVERTISING CAMPAIGN

30/10/2014
Creating a brand campaign for a high street bank is always...

Rock of Ages on Tour

30/10/2014
CONTRACT START/END DATE September/October 2014 DESCRIPTION...

Reed Learning Personalisation with Sitecore

30/10/2014
Reed Learning, a leading provider of training courses and ...

First-time cruisers? It soon becomes a long-term love-in…

29/10/2014
Since July 2013, Cruise Nation and Rooster PR have been on...

Brand Campaign for 123RF

28/10/2014
The Challenge Help 123RF stand out against big-name image...