Patients Know Best unaffected by Heartbleed vulnerability

We have been fielding questions from several customers about the Heartbleed bug, a serious vulnerability that has been found in OpenSSL.  OpenSSL is open source software used for much of the internet to secure “https” connections between computers.

Patients Know Best’s servers were not affected by the vulnerability at any time, so there is no need to reset your PKB password due to this problem.  We do indeed use OpenSSL, but the older, stable version used in PKB’s architecture does not include this vulnerability.

PKB does make connections to many external data sources, such as servers hosting results from remote healthcare devices.  In cases where those services were affected by the Heartbleed bug, the providers rapidly patched their servers, and issued new credentials to us.  We have not seen any reason to suspect that any patient data was compromised in those cases.

Feel free to contact us with any questions.

Leave a Reply