On April 7th, a critical vulnerability was reported in OpenSSL, software used by the majority of service providers on the internet to encrypt communications. The vulnerability is officially known as CVE-2014-0160, but also referred to as Heartbleed.
As always, our top priority is the security and privacy of your data and the engineering team at Geckoboard moved quickly to secure our servers and conduct a security review.
The result of the review is that we’ve found no evidence of any Geckoboard accounts or data being compromised. However, in line with best practice, you may wish to take some additional precautions. We would recommend you to:
1. Change your password
To do so, log in to your Geckoboard account, go to Account Details in your profile and change your password.
2. Regenerate your sharing URLs if you use sharing dashboards and sharing loops
Log in to your Geckoboard account and click the ‘Share’ icon in the top right corner. You will then see the URL you have previously shared with people. To change this or to lock your dashboard, click the padlock icon. Clicking the padlock icon once will lock the dashboard, clicking it again will generate a new sharing URL. To regenerate your sharing loops, go to ‘Sharing loops’ in your profile, click the name of your sharing loop and click ‘Regenerate.’
If you have any questions about this or any other matter then please drop us a line at firstname.lastname@example.org