There has been a huge security hole discovered, and it's being said that it's the biggest security hole ever on the internet.
In a nutshell, an attacker can get your usernames, passwords, etc. very easilly from various websites.
You can read more about it here: http://heartbleed.com/
Amazon, Google, Facebook, etc. will probably post large banners and send you emails telling you to change your passwords when they fix their stuff. Keep an eye out for these!
CF and associated sites and services are not vulnerable. We are using the most up to date release of OpenSSL and GNUTLS.
You can see if your favorite websites are vulnerable here: https://lastpass.com/heartbleed/
Please keep an eye on your financual records and change your passwords when you're given the OK to do so.
If you run a Mac or Linux computer, make sure you have all of your updates installed. (Windows uses Microsoft's implementation of SSL, which is in no way related to OpenSSL.)
Stay safe guys!