As you’ve probably heard, researchers recently discovered a security vulnerability in the technology that secures websites like GrabCAD (if you haven’t heard, here’s the story in the New York Times).
The bug, popularly named Heartbleed, was disclosed late Monday and affected roughly two thirds of all websites. On Tuesday, we installed a patched version of OpenSSL then replaced our servers’ SSL certificates. Although there's no evidence that our previous SSL certificates were compromised, replacing them ensures no one could impersonate the site in the event hackers obtained the certificates’ private keys.
What does this mean for you? The data you store on GrabCAD is safe. However, if exploited, the Heartbleed vulnerability could allow access to sensitive data including website usernames and passwords. Therefore we recommend that you change your GrabCAD password. In fact, given the widespread nature of this problem, many experts are recommending you change your password to all sites where you store confidential information. There is a good piece on Mashable: The Heartbleed Hit List: The Passwords You Need to Change Right Now.
Click here to go to your account settings and change your password.
