As noted in the email sent to the campus-community on Tuesday, we chose to temporarily suspend service Tuesday evening on our web-based and email systems in order to secure and protect University data. This was an intentional outage so that PSU could safeguard its systems against the CVE-2014-0160 vulnerability, commonly known as the Heartbleed Bug.
As of Wednesday evening, all of our systems were patched and we do not believe that Plymouth State University suffered any data loss.
However, we strongly advise all Plymouth State users to change their passwords.
It is important to note that there are only three ways to change your PSU password. The first method is via the Change Password link within myPlymouth. The second method is via the What is my Password link on the myPlymouth logon page. The third option requires an in-person visit to the Help Desk located at the main desk in Lamson Library. Each of these processes require that you initiate the action. PSU will never ask you to reset your password by clicking on a link in an email.
You should also be aware that IT security experts estimate that between half and two-thirds of the websites on the internet are vulnerable to the Heartbleed Bug – essentially anything for which you have a username and password. There is a lot of confusing and conflicting information in the media and on the Internet right now. Based on our research, we suggest you should immediately change your password if you use:
- Gmail (or other Google services)
- Yahoo mail
- Intuit (TurboTax)
This list is NOT intended to be all-inclusive. You should take all necessary precautions to secure your information in any online accounts, including banks and online bill-pay sites. If you are not sure if a website or web-service has been impacted, contact that company directly.
As always, if you have questions or concerns about Plymouth State University services, please contact the Help Desk at 603-535-2929.