Sites like Gmail, Yahoo, Facebook, American Express and iTunes may have exposed your username and passwords!
I was happy to learn that many sites like Chase, Wells Fargo, Bank of America, Walmart, Groupon, Amazon, and Paypal were not vulnerable!
The Heartbleed bug compromises the session keys that keep you logged into a website. This allows an outsider to pose as you without needing your passwords, or allow attackers to pose as a real website and trick you into giving up your personal details.
Even worse, the Heartbleed bug leaves no traces so you may never know when or if you've been hacked. According to this article - http://money.cnn.com/2014/04/0.....tml?iid=EL
- most major websites are targets. A survey conducted by W3Techs showed that 81% of sites run on web server programs Apache and Nginx, and both programs are vulnerable to the Heartbleed bug.
Websites are racing to patch the Heartbleed bug, the worst security hole the Internet has ever seen.
As sites fix the bug on their end, you'll have to change your passwords. The Heartbleed bug allowed information leaks from a key safety feature that is supposed to keep your online communication private -- email, banking, shopping, and passwords.
Many companies did not inform their customers of the danger or even ask them to update their log-in credentials. So, here's a handy password list. It'll be updated as companies respond to questions.
Follow the list at this link to change your passwords -