nd.gov - The Official Portal for North Dakota State Government
North Dakota: Legendary. Follow the trail of legends

Heartbleed Vulnerability

On April 7, 2014, researchers disclosed a vulnerability in a technology called OpenSSL that powers encryption across much of the Internet. The vulnerability is commonly known as the “OpenSSL Heartbleed Flaw.” Upon notification of the vulnerability, ITD leveraged its Intrusion Detection/Prevention infrastructure as the first line of defense to block exploit attempts that matched known threat signatures. In addition, all related systems hosted with ITD were patched and issued new SSL certificates.

Although there is no reason to believe that any part of our infrastructure has been improperly accessed due to this vulnerability, as a matter of best practice, ITD is requiring that state users change their NDGOV Active Directory credentials on Wednesday, May 7, 2014 between 10:00-11:00 AM.

Please contact the Service Desk for further assistance.

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
 

What Our Customers Are Saying

Did a great job and handled the issue quickly thanks!

Dept. of Corrections & Rehabilitation
August 22, 2014
 
 

Copyright © 2014 North Dakota Information Technology Department - ITD
Use Adobe Reader to view, print and collaborate on PDF files.