Keeping our members safe: a message about Heartbleed

You may have heard that earlier this week a critical security bug named “Heartbleed” was revealed in the popular cryptographic library OpenSSL. This bug impacts the technology used to encrypt sensitive information for millions of widely-used sites and services, from Netflix to Instagram. The majority of web servers that use HTTPS to secure traffic were impacted.

We value our community’s privacy and security, and we wanted to take a moment to share the steps Skillshare took this week to protect our data.

Although Skillshare uses HTTPS, we encrypt our traffic via Amazon and Cloudflare and neither service has direct access to our code and access keys. Both Amazon and Cloudflare immediately upgraded their servers when they learned about the security flaw. Even though our community’s data was not compromised, Skillshare took the extra precaution to update our server certificates and patch all OpenSSL installations on the servers we control, as well as our own development machines.

While your Skillshare account is secure and unaffected, we recommend you change your password for any websites that may have been compromised. You can learn about the sites that were affected on Mashable. If you’ve used your Skillshare password for any of the sites that were impacted, please change your Skillshare password immediately. For more detailed information about “Heartbleed,” visit Heartbleed.com.

If you have any concerns, please reach out to our support team! We’re here to answer any questions you may have.