"Cloudbleed" is the term being used to refer to an Internet security nightmare. Yesterday, Cloudflare, a web performance company that provides security services to hundreds of thousands of domains such as Fitbit, OkCupid, and Uber, revealed that it was affected by a serious bug that exposed data from some of the sites that use it.
"The bug was serious because the leaked memory could contain private information and because it had been cached by search engines," Cloudflare explains in a blog post on the matter.
Information from one site using Cloudflare's services could have ended up embedded on another. The cause of the exposed data — a faulty piece of code — has since been fixed, and Cloudflare says that it has "not discovered any evidence of malicious exploits of the bug or other reports of its existence."
Still, if you have an account of any of the websites that use Cloudflare, it's worth taking the safe road and changing your password. Cloudflare has not revealed which domains suffered from the memory leak, except for confirming that 1Password, a password manager, was not affected.