You should change all of your passwords that you use online. All of them. A recent security hole in OpenSSL has been discovered that pretty much opens up 75% of the secure internet.
These are sites like your bank, email, facebook, etc. Even the Canada Revenue Agency site is affected. Change your password at any site that uses a secure login (HTTPS). What they use is a form of SSL certificates. These encrypted certificates are what hold your password, username, etc. when you login. And it is these encrypted certificates that attackers can read.
This should be fairly painless if you use a password manager. If you don't, this would be a good time to start. And don't think you're immune from attack.
- Get and use a password manager
- Change all of your passwords
- Use the password manager to create strong alphanumeric passwords that are longer than 16 characters.
- Never use the same passwords across sites.
Say an attacker gets your name, username, and password from your account on some little forum that you visit. They now try that at every other site. So, if you use that same password at your bank, tax account, facebook, email -- they now have your password for everything.
There are some great password managers for windows, mac, and linux. Even for iOS and Android phones. If want more info or need help let me know.