As you have likely heard in recent media coverage, a security researcher recently exposed a vulnerability affecting OpenSSL, also known as the Heartbleed vulnerability (CVE-2014-0160). Vantagen takes the security of our clients’ data very seriously and promptly began to evaluate our internal systems and work with our vendors to ensure that our client data is safe.  Our internal systems review indicates that our systems housing client data were not affected. However, we were notified from one of our external vendors that they were running the vulnerable version of OpenSSL.   We worked with this vendor to ensure that the vulnerable version of Open SSL was patched and that all necessary steps were taken to protect the data.

We are continuing to communicate with all of our outside vendors to ensure they have audited their systems and that all necessary precautions have been taken.  We will continue to monitor this situation closely and keep you informed.  Should you have any questions regarding this matter or your enrollment website, please contact your account manager.