<p>OpenSSL is a ubiquitous encryption technology designed to protect online communications. It is used for user logins and credit card transactions. By some estimates, it is used by more than <b>90% of encrypted online communications</b>, according to Businessweek.<hr class="legacyRuler"><hr class="legacyRuler"><hr class="invisible minimal-padding">Internet security is an important aspect of the produce industry. It is vital that we protect sensitive transaction information, e-mail logins, and private correspondences. If security is compromised, it could result in <b>identity theft</b> or even <b>corporate espionage</b>.<hr class="legacyRuler"><hr class="legacyRuler"><hr class="invisible minimal-padding">Researchers at Google recently identified the <b>Heartbleed bug</b>, a flaw in OpenSSL which makes it possible for hackers to retrieve encrypted data from website servers.<hr class="legacyRuler"><hr class="legacyRuler"><hr class="invisible minimal-padding">Heartbleed affects the online services you use. Since news of the bug has been well publicized, it is probable that most mainstream services such as Gmail, Facebook, and Instagram have updated their servers to protect against this. However, because Heartbleed became public when it was still a problem, unless you <b>change your passwords now</b>, it is possible that a hacker already has your login information.<hr class="legacyRuler"><hr class="legacyRuler"><hr class="invisible minimal-padding">This vulnerability or "exploit" as it is known amongst hackers has been in existence for two years, and experts believe it has been used maliciously many times, but there is no way to tell.<hr class="legacyRuler"><hr class="legacyRuler"><hr class="invisible minimal-padding"><iframe width="500" height="315" src="//www.youtube.com/embed/OfIBrCaePTE?rel=0" frameborder="0" allowfullscreen></iframe><hr class="legacyRuler"><hr class="legacyRuler"><hr class="invisible minimal-padding">Does your company use OpenSSL for its secure connections? If so, make sure your systems have been patched to protect against future attacks.<hr class="legacyRuler"><hr class="legacyRuler"><hr class="invisible minimal-padding">If you're concerned about your own login information, you can always change your passwords. However, situations like this one highlight the fact that <b>passwords are generally vulnerable.</b> In an effort to beef up your own password security, you may want to consider implementing a two-step authentication service, such as the <b>Google Authenticator</b> app for mobile devices.<hr class="legacyRuler"><hr class="legacyRuler"><hr class="invisible minimal-padding">An authenticator provides a one-time password that changes every 30 seconds or so, to be input in addition to your regular user name and password. This way, if someone else has your username and password information, this will not be enough. Only someone who also has immediate access to your smartphone's app will be able to gain access.<hr class="legacyRuler"><hr class="legacyRuler"><hr class="invisible minimal-padding">Many e-mail providers and other websites where you typically login support this kind of two-factor authentication.<hr class="legacyRuler"><hr class="legacyRuler"><hr class="invisible minimal-padding">As the fresh produce business becomes increasingly more technologically oriented, remaining aware of existing vulnerabilities and taking steps to mitigate risks are key.</p><hr class="legacyRuler"><hr class="invisible minimal-padding">
