On April 7, 2014, a major vulnerability to Web site encryption was announced by OpenSSL, a cryptographic software library. This vulnerability, nicknamed Heartbleed, affected encryption across much of the internet. Like many other technology teams, we took immediate action to patch this vulnerability within 24 hours.
The Alliance is no longer vulnerable to Heartbleed.
We have no evidence of any Alliance accounts being compromised and have taken additional action to insure account security. We encourage you to change your password not only on your MyCMA account but everywhere, as this has affected many of the Web sites you use each day.