GempakBox response to Heartbleed - You're safe!
- Thursday, 10th April, 2014
Just letting you know that GempakBox is unaffected by the security vulnerability known as Heartbleed.
On April 7 a serious security vulnerability (CVE-2014-0160) was disclosed in the OpenSSL library. Like much of the internet, we responded to this critical issue by conducting a security review of our servers.
We've never used the OpenSSL library. GempakBox built its own proxies & implementation of TLS. Therefore, you don't need to change your password (unless you used the same password on other sites that've been affected by Heartbleed).
We did a thorough investigation anyway and we've concluded that none of servers were affected by this bug, nor was any user information compromised. Our engineering team will continue to monitor the situation.
At GempakBox we take security and transparency seriously, which is why we're emailing you today to let you know your information is safe. No additional step is required on your behalf. If you have any questions feel free to reply to this.
GempakBox Technical Support Team