Skip to main content

ACS Notice - vulnerability

Thursday, 01 May 2014

ACS wants to assure its members that the recent Heartbleed vulnerability has not compromised ACS Members and users of ACS services.

The Heartbleed vulnerability affects 1.0.1 and 1.0.2-beta releases of OpenSSL only. The servers that host the ACS website and MyACS member services have not been affected by this vulnerability. Updates were also applied to the servers that host MySFIA to remove any possibility of vulnerability to users of that service.

Please note, for maximum security, ACS applies regular updates and patches to systems to minimise any vulnerability to users. I would like to take this opportunity to recommend you change your password on a regular basis to ensure your information is protected.