Mako Networks is aware of the widespread ‘Heartbleed’ vulnerability in OpenSSL, an open source software suite that is widely used to encrypt web communications. Mako has conducted a thorough analysis of its own systems and the security of our customers, and has patched and updated all potential vulnerabilities.
As a precaution, we recommend all Mako customers update their passwords, not only for the Mako service, but for all other websites and services they may use.
Analysis of Mako Networks Systems
Mako’s Operations and security teams have thoroughly evaluated our systems and taken proactive measures to patch any potential vulnerabilities. Mako used OpenSSL on only a few internal system components of our Central Management System, and all instances of OpenSSL have now been patched and are secure.
Mako Network appliances use a different and highly secure method to connect Virtual Private Networks (VPNs) known as IPSec, and are not susceptible to the Heartbleed SSL vulnerability.
Mako strongly encourages all customers to change their CMS login passwords. We also recommend this task be completed for all websites and services accessed via the Internet. While we have no information about a specific threat, this is good practice to limit the potential exposure of any details that may have been harvested previously.