On April 7, 2014, a critical internet security based vulnerability called “Heartbleed” was disclosed to the public. This vulnerability only affects certain versions of the Secure Sockets Layer, or SSL, software from one particular vendor. This is not a flaw in the SSL protocol itself. The SSL protocol is used for web sites accessed using HTTPS.
Delta Bank, N.A. is highly concerned regarding security. When the information about the vulnerability was released, Delta Bank began the process of examining what systems may be affected, and what options were available to mitigate any possible risk. This included not only systems owned by Delta Bank, but also other systems provided by other vendors used by Delta Bank.
None of Delta Bank’s systems are vulnerable to the “Heartbleed” vulnerability. We continue to work with our various vendors to ensure that they are examining their systems, and are making any corrections necessary to fix their systems.