As the owner of BuildASoil, LLC I was very concerned about the latest news regarding the "Heartbleed" vulnerability.
I received updated communication from our host, shopify.com, regarding this matter and here is an excerpt:
As mentioned earlier, every ecommerce website that uses Shopify is secure against Heartbleed.
During the middle of day on April 7th, the Heartbleed issue became widely disclosed. The Shopify network security and operations team immediately set to work to protect our hosting infrastructure. By 7:00 p.m. they had rolled out a fix across core infrastructure, and by midnight all secondary systems had been secured. The operations team continued to work into the night, and by the following day, all keys and certificates had been re-issued.
Because of the rapid response of our operations team (faster than Google and Yahoo, for example) we haven’t detected any sensitive data being compromised. As a general precaution, we advise that you regularly change passwords, and other sensitive credentials like payment gateway and API credentials. This would be a good time to update all such passwords.
Make sure that any other online stores you deal with in the next few weeks are safe to shop at. Many older online stores will not have a team working behind them. We are blessed to have access to the vast resources of Shopify for your continued online privacy.
Thanks for your continued support and trust, your privacy is always important to us.