Over the weekend, the JerseyMail email service provided by Jersey Post has been affected by a security weakness which is believed could be the Heartbleed bug.
This bug has recently been discovered and is known to have impacted many websites across the world. Heartbleed affects the security measures which protect personal data and causes them to malfunction.
Investigations have concluded that in total, 495 JerseyMail accounts, from more than 10,000 active users, have been affected. These accounts would all appear to be users that typically access their JerseyMail account from a web browser. The affected accounts were accessed at the end of last week and the emails stored in them were deleted and possibly removed.
Jersey Post has already implemented the appropriate security patch and is currently in the process of restoring the emails which have been deleted. It is expected that this will take several days.
All 495 users who have been affected will by now have been contacted, informing them of the situation and what action needs to be taken.
In line with internet good practice, it is recommended that passwords are changed regularly. As a matter of course, it would be an appropriate time for users to think about doing so if they access any of the websites which have been affected by this bug.
We sincerely apologise for any inconvenience that this has caused to our customers.