More on Heartbleed: password changes and mobile

Many of the outside institutions and services you interact with online will likely contact you with advice on whether or not to change your password. This is also a prime opportunity for phishers to send bogus messages pretending to be legitimate sites, asking you to change passwords, and in the process, steal your password. Mousing over a link will show you whether the URL is legitimate (e.g., www.chase.com, not www.chase23acct.com). However,  instead of clicking on the link, you should be able to log into the service’s site directly as you normally do, and change your password within the site. If you have any doubts about the legitimacy of a message, please call the Help Desk for advice.

Mobile devices are generally immune from the bug. However, if you are using an android device, please download and run the Heartbleed detector and to verify that your device is safe. See http://bit.ly/R9l3jN for details.

Call the Computing Help Desk with any questions or concerns. Please subscribe to directly receive emails from the LTS Service Alerts blog (https://blogs.wellesley.edu/servicealerts/) to be sure you continue to receive up-to-date information.

To: Faculty, staff, students
From: Veronica Brandstrader, LTS, x2171
More info: Computing Help Desk, helpdesk@wellesley.edu, faculty staff: x3333, students:

This entry was posted in Security. Bookmark the permalink.