Please note that if you visited OTHER SITES which were vulnerable and you use the same login or password here on CH, then it's possible that your account could become compromised. We recommend changing your password once you have made sure that all of the sites you visit have been patched to fix the Heart Bleed bug. As always, we monitor very closely all account activity on our site and will quickly notice if any accounts have been compromised and the credentials spread to the Internet. If this becomes the case, the accounts will be deactivated until we can confirm the activity with the original account holder.
Please post here if you have any questions.
And now for the nuts and bolts. I hate to be asinine, but do you outsource any user data such as billing info or use a third-party payment processor? If so, which vendor do you use and what does your minimum security standard agreement with them look like as far as their encryption scheme for any of the data from CHU users they may store? If you do use an outside database vendor, do they use OpenSSL to store/validate data and have they implemented the fix if they do?
As to ownership. IP Addresses can not be really used as proof. Since not all ISP give users have a dedicated IP. Many users on that ISP can use the same IP. Mac address, I would not even give that to anyone except my ISP. If you have bought Unlimited or Lifer Membership. The recipt is the one thing that should be taken combined with the email you use for the account. As Proof. Generally am hoping it keeps records of pass emails used with the account so it can show what changes have happened.
[Edited by Toki, 4/10/2014 3:48:21 AM]
If we end up disabling any accounts, the original paid receipt or transaction ID may be necessary to prove original account holder details.
* Updated game trainers and cheats daily
* Get notified when new cheats are added
* Request which games get new trainers
* Priority support with any problem