Orbitz Worldwide Addresses Heartbleed OpenSSL Vulnerability

The Heartbleed vulnerability became public on April 7, at which time the Orbitz Information Security team immediately evaluated our infrastructure to determine if we were ever susceptible. Our review confirmed that we use versions of OpenSSL that are not affected by the Heartbleed vulnerability, because most of our external SSL is served by a third party that informed us the products we use are not affected. Orbitz will continue to monitor the situation, and any products found to be susceptible to this issue will be immediately patched. If you have any further questions about Heartbleed and its impact on Orbitz customers, please contact the press line at +1­-312­-894­-6890 or press@orbitz.com.

“Safe Harbor” Statement under the Private Securities Litigation Reform Act of 1995: Statements in this press release regarding Orbitz Worldwide Inc.’s business which are not historical facts are “forward­-looking statements” that involve risks and uncertainties. For a discussion of such risks and uncertainties, which could cause actual results to differ from those contained in the forward­-looking statements, see “Risk Factors” in the Company’s Annual Report or Form 10­K for the most recently ended fiscal year.

Tagged: Press