Heartbleed Bug

April 11, 2014

Subject: Heartbleed Bug (CVE-2014-0160)

In the past several days, you may have read newspaper articles, or even watched a news report where the topic was “Heartbleed Bug”. The Heartbleed Bug, as it is called, is an internet virus, which is capable of exposing and capturing credit card numbers, passwords, and wreaks other havoc as well.

Panfishpro.com is a small company, and as such, we do not have our own IT department. Secure credit card processing, through our website, is done in-partnership with third parties. These third parties strictly adhere to the guidelines set forth by the Payment Card Industry Security Standards Council. Panfishpro.com also is bound to the rules and regulations of the Payment Card Industry Security Standards Council, and we hold our own valid PCI DSS Certificate of Compliance. Our certificate version is PCI SAQ A 2.0 and is valid through 2016-03-21. Our Certificate of Compliance number is 1CF3-8FF1-B3DB-6AF4 and is issued by Trustwave Holdings, Inc.

When an order is placed through our website, the payment, this is where your debit/credit card information is verified, is processed by GoEmerchant, LLC Credit Card Processing Solutions. Additional payment solutions are provided by PayPal. Each of these entities has issued their own statements on the Heartbleed Bug. Each of these entities have reported to be unaffected by the Heartbleed Bug. If you would like additional readings on the Heartbleed Bug, or our payment processing partners, please follow these links:

GoEmerchant, LLC Credit Card Processing Solutions Heartbleed Bug statement.

PayPal Heartbleed Bug statement.

PCI Security Standards Council. Trustwave Holdings, Inc.

Trustwave Holdings, Inc.

Heartbleed – Wikipedia

More information on the Heartbleed Bug.