Heartbleed Update: SaaS Customers Required to Change Passwords

Replicon Customers Are Not Affected By The Heartbleed Bug

About two weeks ago, independent research teams identified a vulnerability in OpenSSL― the technology that powers encryption across much of the Internet. The news of this vulnerability, popularly referred to as the “Heartbleed bug,” has spread rapidly from tech blogs to the mainstream media.

Akamai, our Content Delivery Network provider, assured us last week that Replicon was not affected by this vulnerability. We learned today, however, that an independent security researcher contacted Akamai this past weekend about defects in the software they used to protect their SSL keys. A bug, in fact, was present, and neither the data nor the keys were fully protected.

Since Replicon uses Akamai services for edge caching and application acceleration for our Cloud platform, this may have exposed Replicon user names and passwords from August 2012 through April 4, 2014. Consequently, we are in the process of updating our certificates within the next 24 hours to eliminate any exposure to the Heartbleed bug.

For customers using SAML (for Single Sign-On), exposure to the bug would be dependent on their organization’s use of affected versions of OpenSSL and their SAML provider.

Replicon will be forcing a password change at the application level once the certificates are updated. At that time, end users will see a prompt to change their password on the log in page.

Read more details from Akamai here: https://blogs.akamai.com/2014/04/heartbleed-update-v3.html

The integrity and safety of our customers’ data is paramount. We are reacting quickly to address and resolve the issue. Customers with queries can contact our Technical Support Team at 1-877-662-2519 (North America) and +800 6622 5192 (Outside North America).

Avatar
ABOUT THE AUTHOR
Replicon
Replicon provides award-winning products that make it easy to manage your workforce. With complete solution sets for client billing, project costing, and time and attendance management, Replicon enables the capture, administration, and optimization of your most underutilized and important asset: time.
Get started today.
Set up a free trial based on your business needs. Start Free Trial

Global Compliance Desk – Ireland

New Unpaid Parental Leave Entitlement The Parental Leave Acts allow parents to take parental leave from employment in respect of certain children. Under the Parental Leave Act 1998, parents of…Read More

Global Compliance Desk – Germany

Annual Leave Entitlement During Unpaid Special Leave  An employee who is continuously on unpaid special leave for a calendar year is not entitled to holiday leave in the absence of…Read More

25 Employee Payroll Tips for Small Business Owners

Recruiter | July 05, 2019 By Lakshmi Raj, Co-Founder and Co-CEO, Replicon Payroll can be a challenging task for any small business but with the right tools, it can become…Read More

Common pitfalls in professional services organizations & how to avoid them (1/3)

The professional services organization (PSO) landscape is changing -- employees are harder to recruit and retain, a globalized marketplace increases competition for clients, clients want more for less, and management…Read More

Exempt vs non-exempt workers: simplify employee classification

In the United States, most jobs are governed by the Fair Labor Standards Act (FLSA), which classifies workers into two broad categories: exempt and non-exempt. Under the FLSA, non-exempt employees are…Read More

The five reasons employees work overtime

Very few people enjoy working overtime, and even fewer companies want their employees stretching their hours. Besides the costs of paying overtime (and a few extra costs), research has shown…Read More
  • Cloud
  • In The News
  • Corporate
  • Professional Services Management
  • Project and Program Management
  • Shared Services Management
  • Time and Attendance Management
  • Workforce Management
  • Customer Feature
  • Feature Update
  • Time Intelligence
  • Industry News
  • Webinar Recap
  • Global Compliance Updates
  • Chat with us
    How can we help you?