After discovering Heartbleed, the company immediately revoked affected certificates and patched their OpenSSL libraries.