As you know, we take security very seriously at Alarm Grid. Both home and internet security. So we wanted to speak on the Heartbleed vulnerability the Internet has been buzzing about since yesterday.
For those of you that are unaware, Heartbleed is the codename of a serious bug that was exposed in OpenSSL, a popular implementation of the SSL protocol. SSL is the security protocol that secure sites, like e-commerce stores, use to make sure your information is encrypted as you go to make purchased and give sensitive information.
Like most of the Internet, Alarm Grid's servers do use OpenSSL and thus we were susceptible to this bug. We have already fixed the issue in less than 24 hours of notice by patching our servers and replacing our SSL certificates.
Though, there is a hypothetical chance that your password on Alarm Grid could have been compromised. There is zero evidence that it has been, but as a precautionary method we recommend you change your password on Alarm Grid and any site you have used in the last two years. Yes, that's how long this bug has been present, even though it was just discovered yesterday.
It's important to note that we are fully PCI-compliant and do NOT store your credit card information, so there is no chance that your credit card information could have been compromised from our site. We also do not store any passwords or codes from your home security system. So luckily, there is very little risk to you as an Alarm Grid customer.
Please, make sure you change your password everywhere on the Internet and hope the sites you frequent are as crazy about security as we are!