Back to Information Security

Ceridian Addresses OpenSSL Heartbleed Vulnerability

On Monday, April 7, Heartbleed, a major vulnerability in one of the technologies that powers encryption across much of the internet was discovered. Like many others, Ceridian took immediate action to determine whether the vulnerability existed within the Ceridian enterprise.

After a thorough search and scans, Heartbleed was not found in any of our products or our critical infrastructure.

Ceridian responded with a systematic, global review of its systems. Key actions taken as part of our review include:

  • Conducting a thorough review of all products and core infrastructure components – both manual checks and automated scanning were incorporated
  • Leveraging industry qualified third party service to identify vulnerabilities resulting from the Heartbleed bug
  • Updating our monitoring to detect any exploitation of the Heartbleed bug

We will continue to make the protection of your data a top priority. If you have additional questions regarding our Ceridian Information Security Program, please contact your account representative.