We have been fielding a lot of calls today about the Heartbleed bug and wanted to send out as much information that we have at this time so that you can determine if your account may have an issue.
Most of our clients don't rely on SSL and since this was an SSL vulnerability they will not be affected as far as their website is concerned.
However, even if your Joomla site is not affected, it is not a bad idea to change usernames and passwords of any Super Administrators that have access to your site (including yourself).
All of our accounts hosted on Rochen and Host Gator have been proactively patched and none have reported any contamination. Host Gator has a website tool that was created solely for the purpose of testing sites and it is located here: https://heartbleed.hostgator.com/. If you have a shopping cart on your site and you are using SSL (https) then you may use this tool to be certain your site is safe. We have run the test on all the sites that we have hosted that we know that have Security Certificates and all have proven to be clean.
That being said, it does not mean that you are safe from this bug. Several large accounts were cracked including Facebook and Google and it is recommended that you change your password on any site that has reported the infection. Earlier today, Mashable released a list of infected sites and we have included it here: https://mashable.com/2014/04/09/heartbleed-bug-websites-affected/.
Please follow their guidelines and protect yourself. If someone were to get your facebook password it could do more damage than what you may think. Anyone with your Facebook username and password can login, go to Settings (General), and download your data. This data may well include your credit card information if you have made any purchases on Facebook. This may include purchasing ads.
We really would hate to see any of our friends or clients compromised by this bug, so take the time to take care of your data and keep yourself safe from the predators!