We usually don’t write much here on the blog about what we do behind the scenes to keep Postcrossing running for you, but keeping your data secure is a priority and something we work hard for.
If you follow the news, you might have heard about a recent internet security problem known as Heartbleed (aka CVE-2014–0160). This bug has affected a significant part of the web by making it vulnerable to expose data that should otherwise be secure.
While we have no evidence that any accounts on Postcrossing have been harmed, within 24h we have patched all our servers and changed our SSL certificates, and so have the vendors of services that we use to bring this website to you.
Nonetheless, and to be extra careful, we recommend that as a precaution you take the time to change your password in Postcrossing and other websites that you use. This is an advice you will probably see in many other websites in the coming days and it is our recommendation as well.
We will continue to do our best to keep your data safe. If you have any questions, just get in touch.