As we reported, the Heartbleed Bug was responsible for Canada Revenue Acency shutting down the sucure portion of their website on Wednesday. The shut down affects access to online accounts for both individuals and business and also include such tax services as NETFILE and EFILE.
There are a number of other government organiations that are likely as valnerable as the CRA.
It's estimate that over two third of all production webservers are running the affected software, OpenSSL.
The Canadian Bankers Association has release a statement saying that the Heartbleed bug did not affect Canadian banking sites.
The problem, revealed on April 7 by Google and a Finnish security Firm named Codenomicon, relates to coding oversight within OpenSSL, a widely used software package that is used to encript services such as email, instant messaging and VPN or Virtual Private Network.
Security researchers say the breach allows hackers to access small bits of information at a time that could lead to personal and financial information stored on a website and steal that without leaving a trace. The Heartbleed breach is particularly risky for sites that handle e-commerce or personal information, including passwords.
What's potentially more troubling is that this code oversight dates back to version of the software that were realeased in 2012.
Google, Yahoo, Tumblr, Pinterest, Facebook and hundred of other services were affected at some point even though many have since been fixed.
Mashable has compiled a massive list of sites that were affected by Heartbeed, and whether or not they have been fixed. The list can be found here http://mashable.com/2014/04/09/heartbleed-bug-websites-affected/
If you use or have used any of these services in the past, we strongly suggest that you change your passwords and any password that are the same on other sites.