Recently the United States Computer Emergency Readiness Team (US-CERT) announced that many secure sites, like your bank or email provider, have a vulnerability that make them open to remote attack by hackers. This means that sensitive customer data like login information and passwords, previously thought to be secure, may be not be on all secure sites. This issue has been reported as the OpenSSL Heartbleed Vulnerability.
At Mitchell, we take your data security seriously and so we want to assure you that Mitchell's systems were NOT exposed to the OpenSSL Heartbleed Vulnerability.
As soon as we received notification of this vulnerability, we immediately took action and confirmed by Tuesday morning (4/11/2014) that Mitchell's systems did NOT utilize the software versions that have this issue. Additionally, as an extra precaution, we retained an external security service to examine Mitchell's services, who also confirmed that Mitchell does not use the vulnerable OpenSSL code and our secure system was not susceptible to this vulnerability.
Should you have any questions about Mitchell’s security protocols, please feel free to contact us. Thank you for your support.
Repair Product Team
