Security FAQ: Heartbleed Vulnerability

On April 7th, we were made aware of a serious vulnerability in the popular OpenSSL cryptographic software library known as the Heartbleed bug. When it is exploited it leads to the leak of memory contents from the server to the client and from the client to the server.

We’ve taken a number of steps to address this issue:

  1. We’ve patched all of our systems using the newer, protected version of OpenSSL.

  2. We’ve generated and installed new SSL certificates and revoked our older certificates.

  3. We’ve reset all browser sessions that were active prior to the vulnerability being addressed on our servers. You will have to log back into Rescale the next time you visit our platform.

We will continue to monitor the situation and provides updates as appropriate. Please contact us at support@rescale.com if you have questions.

This article was written by Rescale Engineering.