The Heartbleed Bug Security Review

The Heartbleed Bug Security Review

The Heartbleed Bug Security Review

The Eventinterface engineering team has been working to assess the impact for our users in the wake of the April 7th disclosure of CVE-2014-0160, known colloquially as Heartbleed. We have joined virtually every service provider on the Internet in responding to this critical vulnerability in OpenSSL’s handling of heartbeat packets. Our team has conducted a thorough security review and we want to share our findings with you.

We have concluded from our review that there is no evidence that any Eventinterface user credentials have been compromised. Eventinterface services are not secured by a version of OpenSSL with the Heartbleed vulnerability.

We hope this answers questions about the possible impact of CVE-2014-0160 on your Eventinterface applications for you and your attendees. Do feel free to reach out to us here should you have any follow-up questions.