OpenSSL exposed the most serious security vulnerability of the year. This vulnerability was named "heartbleed" in the hacker community.
The "heartbleed" vulnerability will affect at least 0.2 billion Chinese netizens. It is initially evaluated that a batch of mainstream websites with https logon methods are recruited by no less than 30% of websites, these include the most common shopping, online banking, social networking, portals, microblogs, mailboxes, and other well-known websites and services. By exploiting this vulnerability, hackers can obtain sensitive data such as user logon accounts, passwords, and cookies on websites starting with https.
Upgrade OpenSSL to version 1.0.1g as soon as possible to fix this vulnerability.
We recommend that you do not log on to your account on a website affected by the vulnerability until the vulnerability is fixed.