Wednesday, May 27, 2015Wednesday, May 27, 2015

Heartbleed bug: To change or not to change your computer password

Users are unsure as Heartbleed bug lurks and websites tell them little

Published on Apr 12, 2014 8:13 AM
File picture illustration of the word 'password' pictured through a magnifying glass on a computer screen, taken in Berlin on May 21, 2013. -- FILE PHOTO: REUTERS

To change or not to change - their passwords, that is.

Many computer users are facing this dilemma following the discovery of the potent Heartbleed, which has opened the door for hackers to enter two-thirds of websites around the world.

Security experts have advised that it be done after an affected website had been patched to get rid of the bug.

But many of the highly popular websites reportedly affected by Heartbleed appear to have left users in the dark as to whether they need to take action.

Enjoy 2 weeks of unlimited digital access to The Straits Times. Get your free access now!

Related Links

Background story

Website operators may still be assessing the potential damage. It is the reason they have not sent out a notice asking users to change their passwords, said Mr Tan Shong Ye, IT risk and cyber-security leader at consulting firm PricewaterhouseCoopers Singapore.

"It may take days to completely patch the security loophole and assess the sensitive information that may be leaked," he added.