H&R Block Client Data Not Impacted by Heartbleed Bug

April 11, 2014

This week, security researchers announced the discovery of a security flaw in OpenSSL technology called the Heartbleed Bug. OpenSSL is used by some online services to encrypt data over the Internet but the bug may not affect every website.

H&R Block has reviewed it systems and has currently found no risk to client data due to the Heartbleed Bug. We continue to review our systems and are taking the appropriate steps to ensure our H&R Block office and online customers are protected.

In addition, the IRS has said that their systems continue to operate and are not affected by this bug, and they are not aware of any security vulnerabilities related to this situation. The IRS continues to accept tax returns as normal. The advice to taxpayers is to continue filing tax returns, including e-file.

There is no need to change your H&R Block password due to this issue. However, regularly changing passwords is recommended, as well as using different passwords for your various website accounts.

Contact the Media Desk

Related Resources

H&R Block: Insights on American Perseverance

Millions of American lives have changed during the pandemic—and H&R Block has a front row seat to it all. See how people just like you are learning to thrive in these changing times.

New H&R Block Insights Report Looks Back at a Year of Americans Changing the Way They Worked and Becoming Smarter with Money

H&R Block releases new insights report outlining how Americans have persisted through the COVID-19 pandemic.

H&R Block Continues Business Growth with Two New Vice Presidents

H&R Block announces new vice presidents of Government Relations and Technology. Meet the new members of the team.

H&R Block Files Trademark Infringement Lawsuit Against Block, Inc. (formerly Square, Inc.)

H&R Block has filed a lawsuit against Block, Inc., formerly known as Square, Inc., seeking to enjoin the latter’s infringement of Block’s family of trademarks.

Connect with us