Experts Find a Door Ajar in an Internet Security Method Thought Safe - NYTimes.com

Watch for updates from your Web service providers indicating it's time to change your passwords (after they apply patches)

"“This still means that the little lock icon (HTTPS) we all trusted to keep our passwords, personal emails and credit cards safe was actually making all that private information accessible to anyone who knew about the exploit,” the security team at Tumblr, which is part of Yahoo, wrote on its site. “This might be a good day to call in sick and take some time to change your passwords everywhere — especially your high-security services like email, file storage and banking, which may have been compromised by this bug.”"

Experts Find a Door Ajar in an Internet Security Method Thought Safe - NYTimes.com