You may have heard about the vulnerability in OpenSSL that has been in the news in recent days (often referred to as “Heartbleed”). As soon as we became aware of this serious issue last week the AHA was very quickly in touch with all of our software vendors and service providers to check on the situation. Neither our membership database nor the system we use for processing credit card information runs the program that has this weakness. All of our systems on which members’ login data are held are on servers that do not run OpenSSL.
Nonetheless, it is good practice to change passwords occasionally, and in this case, if you use your AHA password on other sites that might have been compromised it is a good idea to change it. You can change your AHA password by logging on at www.historians.org, clicking MY AHA to access the member services page, and then clicking the Update My Password link under My Account.