Over the past number of days there has been a lot of news about the OpenSSL vulnerability CVE-2014-0160, known as Heartbleed.

Immediately after learning about the Heartbleed vulnerability, our security team audited all our systems. It was determined that our core systems were unaffected and any ancillary systems were patched and updated within three hours of first alert. Betterment is not vulnerable and your account is secure.

While your Betterment account was not directly impacted by this vulnerability, it is possible that other websites you use may have been affected. As general good security practice, Betterment recommends that you periodically update all your passwords, and avoid using the same or similar passwords across multiple websites.  Now would be a good time to update your passwords. 

If you have any questions about the security of your Betterment account, please contact us at support@betterment.com.