The Heartbleed bug is a recent vulnerability that has been circulating news articles this week. EarthLink has validated that we are not using any impacted versions of OpenSSL in our consumer systems like webmail.earthlink.net, myaccount.earthlink.net andmy.earthlink.net.
Please keep in mind that using the same email and password combination for multiple sites can pose a risk if any one of those sites is compromised. We strongly suggest that you choose a unique password for your EarthLink email address that you do not use on any other websites. This will greatly improve the security of your EarthLink account, and thank you for being a customer of EarthLink.