What do you need to do:
- For RIT passwords, please change your passwords. Given the scale of this vulnerability, there is concern that passwords may be at risk.
-For personal passwords, we recommend that you change your passwords. Priority should be given to sites accessing private information, financial accounts and email. Note that if the website is still vulnerable, you may need to change your password again after the site is patched.
- Stop using the same password for multiple sites! Create a new unique password for each site. Yes, this is painful.
- Be alert for phishing attempts leveraging the publicity around the OpenSSL bug.