The basic need of everyone out there is to change your passwords. It was possible to steal passwords due to the Heartbleed security flaw, making identity theft a big concern.
Heartbleed hits social media accounts
A number of social media sites were affected by Heartbleed. Many of them are popular with businesses that have social media accounts. Here is a list of who was hit, and who you need a new password for:
- Facebook – it wasn’t 100% clear if they were hit, but they added a patch that corrects Heartbleed, so now is the time to get a new password.
- Instagram – it was absolutely affected, but no confirmed breaches have been found. They’re patched and ready.
- Pinterest – they found no evidence of mischief, but patched it as they were vulnerable.
- Tumblr – no breach was found, but they were vulnerable. A patch has been issued.
- Flickr – owned by Yahoo! who also own Tumblr. Same applies; no breach detected, they were vulnerable but a patch is in place.
- Google+ – they were absolutely vulnerable to this, and have patched.
- YouTube – is part of Google and was vulnerable.
- SoundCloud – there was no evidence of any breach, but they issued a patch anyway.
- OKCupid – ok, ok. Not business related
Many other websites which are not social media sites that were hit could possibly make your social media account vulnerable. In short, your account might be safe – but might isn’t good enough.
The Heartbleed bug hits people who use the same password for multiple websites especially hard. Ok, so they took your Instagram account where you only follow Kim K, Rihanna and Beyonce, but do you use the same password for it as the password to your company account?
How to protect your social media account from bugs similar to Heartbleed
A way to protect your social media accounts from hackers, and bugs similar to Heartbleed, is to use a password manager.
These tools allow you to manage as many different passwords as you want. They can even auto-fill the login details as you go onto your favorite websites.
Excellent password managers include:
Each make it so that you only have to remember one password to log into their service. You had better make sure that this is a strong password. In the very unlikely event that someone gets this password, you’ll feel like Batman when Bane revealed he has built his base beneath the Wayne Tech armory.
A two step-authentication system can also help protect you. The goal of two step authentication is connect something that you know, such as your password, with something that you have, usually your smartphone.
Once you enter your password into your account a code is sent to your phone. You have to enter the code in order to log into your account. When a hacker tries to use your password, once they have stolen it, they will then need to enter the code sent to your smartphone – which they hopefully do not have.
Conclusion on Heartbleed and your social media accounts
We’re talking about how to build up your social media accounts all day long here on blog.devumi.com. Not protecting your accounts can lead to a tremendous loss of data, followers, and time – tearing down all of your hard work in a second.
If you have been the victim of an account hack, check out our Twitter follower service, or YouTube subscribers service as you recover and try to get your natural follower and fan numbers back up again.
Feature image via wwwedmeister / Shutterstock
Lessons From the 2014 Heartbleed Security Breach That Still Apply in 2017
- When attacks like these happen, the consumer’s best first step is to change passwords—all of the passwords. (And it goes without saying that your work password should be much more sophisticated—and should entail two-factor authentication—than the one you use for ordering pizza from Dominoes.com).
- Heartbleed also hit a number of social-media sites; see the rest of the article for details on how cautious you need to be with every site from Facebook to Twitter.
- The theft of passwords is a major goal for hackers. Moving forward, one of the best ways to protect your social media accounts from hackers is to use a password manager like LastPass (see the article for in-depth details).
- These next-gen password managers are designed so that you only have to remember one password to log into their service. (Just be certain to commit this password to memory—trying to recover it is akin to breaking into Fort Knox.)
- If you have been the victim of an account hack, you must act immediately to rebuild your number and social proof. Devumi’s Twitter Follower service, or YouTube Subscribers service can help.