Important Security Update Regarding "Heartbleed" Bug

Thursday, April 10, 2014 • by Abby Schneiderman

You've probably heard by now about a major Internet security flaw that has the potential to affect virtually every site on the Internet.  

The nature of the flaw was such that some data that was sent encrypted from you to a website could be read by an attacker. Note that this doesn't mean that it did happen, only that it was a risk. 

Monday when the problem was first announced, sites that send encrypted data (including Everplans) have been working to eliminate this vulnerability.  

Security is at the core of what we do here at Everplans and the team has been working around the clock to make sure we are not vulnerable.  

For any site addressing this problem there is a 3-step process:

  • First, update the vulnerable software on all affected servers
  • Second, replace the secret keys used to encrypt secure web traffic
  • And the final step is up to you: For your security, you should consider changing your website passwords. Everplans has completed the first two steps and is recommending that members change their Everplans password. 

How To Change Your Password

1. Click This Link.

2. You will be asked to sign into your account.

3. After signing in you'll be on your "Account" page.  Select "User Info" on the left side of the page.

4. Follow the instructions on this page to change your password.

Please Note: This is a precaution. We have no reason to believe any Everplans accounts were compromised.

And, because this was a flaw that affected most all sites on the Internet, it would be a good idea to take this moment to change your passwords across the board for any other sites you use that may contain sensitive information. 

If you'd like to learn more about this flaw (called, poetically, Heartbleed), you can read these articles:

New York Times Coverage

If you have any questions or concerns, please feel free to send us a note at


Abby Schneiderman and Adam Seifer