Quote Originally Posted by SeijiSensei View Post
I'd be a bit skeptical of the opinions of the bank's staff. First, their job is to protect the bank from any type of litigation so their primary responsibility is to put the blame for any problems on you. Heartbleed shows that there certainly is "threat all the time," but to be honest I trust my PCs more than I trust most corporate systems. The last couple of days have seen a number of comments from companies like Cisco and Juniper that some of their products may be affected by Heartbleed. I can fix my own machines, but how can I know that the products on the other end of the connection are secure? And what kind of time frame are we talking about when it comes to overhauling proprietary systems on large corporate networks?
^This. I completely agree with you. I couldn't say it better. I just learned about the Heartbleed bug on OpenSSL. The infrastructure implied in most bank's servers makes hard to see (or trust) they'll fix the issue, assuming they run a Linux-based server....

Kind Regards