Security researchers say the threat, known as Heartbleed, is serious, partly because it remained undiscovered for more two years. Attackers can exploit the vulnerability without leaving any trace, so anything sent during that time has potentially been compromised. It’s not known, though, whether anyone has actually used it to conduct an attack.
Researchers are advising people to change all of their passwords.
via ‘Heartbleed’ threat puts passwords, credit cards and other data at risk – Fox News