Officials are encouraging Healthcare.gov users to  change their passwords, after assessing the potential impact of the Heartbleed security lapse. Modern Healthcare reports that the government says “there is no indication that the healthcare.gov site has been compromised,” but the password alert is an added security measure.

The Heartbleed security issue is a flaw in the Secure Socket Layer function of many websites, and is not unique to Healthcare.gov. The site’s home-grown problems have been many, marked by its disastrous launch when it could not handle the amount of web traffic received, and users could not register to buy health insurance.