Target Dashboard and Heartbleed

Last Updated: Tuesday, April 15, 2014 by Sofi Hjalmarsson

The Heartbleed bug has recently gotten a lot of attention. It is a vulnerability in Open SSL, which is an open source encryption library for Linux.

The good news for Target Dashboard users is that Target Dashboard is using Microsoft technology, and runs fully on Microsoft Azure and Windows. This means that we don’t use Open SSL at all. We use an encryption library called IIS, which is not affected by the Heartbleed bug.

Microsoft has released a statement regarding the Heartbleed bug in relation to Azure which you can read here. More information about Heartbleed and IIS can be found here, and if you would like to run a test on any website to see if it’s affected, including Target Dashboard, you can go here.

To summarise, Target Dashboard is not at risk and you do not need to change your password if you are using our services.

We would like to recommend however, that if you are using the same password on Target Dashboard and other sites or web based services, to change it. We always recommend that you use a password for Target Dashboard that is unique and strong.

As always, don’t hesitate to let us know if you have any questions at all.