The following message was sent from the University's Chief Information Security Officer Brian Dahlin:
You have likely heard about the global HeartBleed OpenSSL vulnerability. The University has been actively involved in mitigation and response to this threat. You can learn more at heartbleed.com.
It's also a good idea to be aware of phishing by not clicking on links provided to you in any notification emails to change your password; there is potential for an increase in phishing scams based on this event. We recommend directly typing the URL (or using a bookmark you've previously saved), to help avoid potential phishing attacks.
For questions about Heartbleed, contact University Information Security at email@example.com.