It has become apparent that a major hole in the system that encrypts data on major websites has existed for 2 years. The bug has affected many popular websites and services — ones you might use every day, like Gmail and Facebook — and may have quietly exposed your sensitive account information (such as passwords and credit card numbers) over the past two years. Most providers have now applied a patch and closed this hole.
What sites and services have been affected though is not very clear; nor is the extent of the data exposure ..... if indeed there has been any at all ..., but we would recommend you consider changing your passwords on the following sites with immediate effect.
- Google & Gmail
- Yahoo & Yahoo Mail
LinkedIn, which I know many of us use; does not appear to have been affected. It is not yet clear if Twitter has an issue.
For more information, see the article here from Mashable; which has a list which is being kept up to date