Since the Heartbleed bug was announced, many internet users changed all of their passwords.
However, if you use certain Android devices, you may still be at risk.
According to the Huffington Post, numerous devices running older versions of Google’s Android operating system may be at risk of the high-profile bug.
Marc Rogers, Security Expert at the mobile security firm Lookout, told the Huffington Post that anyone using Android version 4.1.1 should avoid sensitive transactions on their mobile devices because a hacker could exploit the Heartbleed bug to steal their data.
“The whole device is vulnerable, so you should be cautious about the kind of sites you use,” Rogers said in an interview. “I’d be cautious about doing banking on your phone.”
According to the Huffington Post, Rogers said a hacker could take advantage of the Heartbleed bug if people open a malicious website on a vulnerable phone while doing online banking on that device.
However, Rogers says that such an attack is complex and the likely of it happening is relatively low.
Lookout has a free app that lets Android users see if they are running a vulnerable version of the software on their phone.