Apple today confirmed to Re/code that iOS, OS X, and “key web services” were not affected by the security flaw know as Heartbleed.
“Apple takes security very seriously. iOS and OS X never incorporated the vulnerable software and key web-based services were not affected,” an Apple spokesperson told Re/code.
Heartbleed was a security flaw in the open-source software OpenSSL which provides secure connections between a client and a server. OpenSSL is widely used on the Internet, so the security hole is believed to have affected up to 66% of the Internet.
The flaw allowed malicious attackers to extract login and password data and other data from a server.
It is highly recommended that users change their login/password on affected servers. A list of high-profile servers that have been affected by Heartbleed is available at Mashable.