In early April, researchers discovered the Heartbleed bug, a flaw in the popular OpenSSL tool that powers secure web sessions. Despite the SSL promise of heightened security, Heartbleed has allowed hackers to get a clear, unencrypted view of data for as long as two years, undetected.

Although specific credit union websites were not included on a long list of potentially affected websites, credit unions are still vulnerable through their members and their passwords. Learn how credit union vendors are addressing the problem and what financial regulators recommend to reduce the potential for identity theft.

Heartbleed's Credit Union Impact: Threat of the Week: Check in with the nation's largest credit unions and vendors regarding OpenSSL vulnerability.

Heartbleed Bug: FFIEC Pens Recommendations: Read steps your credit union can take to reduce risk associated with the new cyberattack.

Heartbleed Bug Targets Online Activity: Members who conduct business transactions or save passwords on websites could be affected.