The Heartbleed vulnerability exists in OpenSSL, a common implementation of the SSL protocol used to secure communications on the Internet. Security experts say the media hype surrounding the bug is a bit melodramatic. It’s possible to use the vulnerability to capture a servers private encryption key. The risk is minimal if youre taking basic security measures, experts say. The vulnerability has existed for a couple years and there’s a fair chance that your passwords have been exposed or compromised.”]