2014-04 Heartbleed SSL Vulnerability: Are Riva Cloud Customers at Risk?

In early April 2014, the OpenSSL project announced a serious security vulnerability in the OpenSSL libraries nicknamed "Heartbleed".

The Heartbleed bug is a major vulnerability in the popular OpenSSL software library that compromises the integrity of data secured through SSL.

Riva and Riva Cloud Related Services Are Not Affected

We have received numerous questions from clients concerned about whether their Riva Cloud sync service is affected by this bug.

Thankfully, this vulnerability is limited to applications that use the OpenSSL libraries. Riva Cloud does not use OpenSSL library. As a result, our subscribers are not impacted directly by this vulnerability.

In addition to the synchronization services, it has also been confirmed that the billing payment processor responsible for automated credit card processing is also unaffected.

If you have configured your CRM or email services to use the OpenSSL provider, you should make sure to update the SSL libraries or to switch to another cryptographic service provider.

For more information about the Heartbleed vulnerability, see http://heartbleed.com/.

Additional Security Questions

At Riva Cloud, we want you to understand that when you subscribe to our service, we are providing enterprise grade security to protect our service and your data.

If you have specific security concerns, please contact the Riva Success Team, and a member of our team will schedule a call with you to discuss your concerns.