A vulnerability known as The Heartbleed Bug was discovered in recent versions of OpenSSL. You may already be aware that this library is used by a substantial number of services on the Internet. We use it at Spreedly. We're happy to report that we have deployed the changes necessary to mitigate the vulnerability.
We have taken the precautionary step of deleting all browser sessions. We want to recommend that you consider taking the following steps:
- Reset your Spreedly password.
- Generate new Access Secrets. These are used by your applications to connect to our service.
- Generate a new Signing Secret. These are used by Spreedly to sign requests made to your servers¬†when¬†working with offsite gateways.