Chances are you've already heard of the Heartbleed security hole. Your passwords are at risk, so you're going to want to change them if you frequent certain sites.

Mashable has identified a couple of websites that had the flaw. The bug doesn't necessarily mean your personal information got snatched, but just to be sure it is always better to be safe than sorry.

Here are some of the bigger websites that may have left you exposed. Head over to Mashable for a more complete list of what needs protecting:

Facebook
Pinterest
Tumblr
Google
Yahoo
Gmail
Amazon Web Services
TurboTax
Dropbox
OKCupid
SoundCloud

What is the Heartbleed bug?

To understand it, you'll need to know what OpenSSL means. It is an open-source cryptographic software library that is used in part to encrypt data transmitted over the internet. Over 56% of websites use it. From Gmail to Facebook and OKCupid, the list is long.

This means if you've signed in using OpenSSL during the past two years, there's a substantial chance that cybercriminals have exploited this bug to gain access to your account somewhere around the web.

[The Heartbleed Bug]