'Heartbleed' compromise to OpenSSL

We are aware of the recent announcement of the 'Heartbleed' compromise to OpenSSL (CVE-2014-0160). We have checked our infrastructure and the SureFile Accounts service in particular, and we're pleased to announce that neither is affected.

We take the security of our customers' data very seriously and keep abreast of the latest announcements of security vulnerabilities and exploits to ensure that we can continue to do so. Whilst we do use OpenSSL to protect customer data we're pleased to say that the compromised versions have never been deployed in our live services.