Dear Obsurvey Customer,

The OpenSSL project has recently announced a security vulnerability in OpenSSL affecting versions 1.0.1 and 1.0.2 (CVE-2014-0160).

This means that in some instances individuals could access sensitive data otherwise protected by SSL encryption.

After conducting an in-depth analysis we do not believe that the vulnerability was exploited on any of our servers and no data was compromised. However, as an additional precautionary measure we recommend users change their Obsurvey account password.

We went through all of the services we use at Obsurvey, made sure that they are patched with the #Heartbleed vulnerability and then changed our credentials at every one of these services.

For more information about this vulnerability, please visit:

– OpenSSL’s official advisory: https://www.openssl.org/news/secadv_20140407.txt
– The Heartbleed Bug: http://heartbleed.com/

Should you have any questions do not hesitate to contact us.

Best regards,

Obsurvey Support