How to Protect Yourself From the 'Heartbleed' Bug: Change These Passwords Right Now

(TheBlaze/AP) -- The "Heartbleed" bug has caused anxiety for people and businesses. Now, it appears that the computer bug is affecting not just websites, but also networking equipment including routers, switches and firewalls.

There isn't much that people can do to protect themselves completely until the affected websites implement a fix. And in the case of networking equipment, that could be a while.

Here are three things you can do to reduce the threat:

- Change your passwords. This isn't a full-proof solution. It'll only help if the website in question has put in place required security patches. You also might want to wait a week and then change them again.

- Worried about the websites you're surfing? There's a free add-on for the Firefox browser to check a site's vulnerability and provide color-codes flags. Green means go and red means stop. You can download it here.

- Check the website of the company that made your home router to see if it has announced any problems. Also be diligent about downloading and installing and software updates you may receive.

CNN Money also released a list of sites that have been "patched" -- meaning you should change your passwords if you have accounts with any of the following:

Google, YouTube and Gmail Facebook Yahoo, Yahoo Mail, Tumblr, Flickr OKCupid Wikipedia

More from CNN Money:

Don’t worry about these (they don’t use the affected software, or ran a different version)

Amazon AOL and Mapquest Bank of America Capital One bank Charles Schwab Chase bank Citibank E*Trade Fidelity HSBC bank LinkedIn Microsoft, Hotmail and Outlook PayPal PNC bank Scottrade TD Ameritrade Twitter U.S. Bank Vanguard Wells Fargo

Don’t change these passwords yet (still unclear, no response)

American Express Apple, iCloud and iTunes Healthcare.gov

The extent of the damage caused by the Heartbleed is unknown. The security hole exists on a vast number of the Internet's Web servers and went undetected for more than two years. Although it's conceivable that the flaw was never discovered by hackers, it's difficult to tell.