The Heartbleed bug is one of the worst threats to online security and privacy in recent memory. Worse yet, the bug isn’t limited to computers – there’s also a chance your Android device is at risk, too. Google knows about Heartbleed and is working on a software patch, but your device could be at risk. Luckily, there’s a really simple way to check if your Android could be exploited on a malicious website. Head into the Google Play Store and download Heartbleed Detector, a free app from Lookout Mobile. When you first load up the app, it will tell you if your device contains the vulnerable version of OpenSSL, which is what Heartbleed targets, as well as whether or not the Heartbeat extension that hosts the coding bug is enabled. If your phone doesn’t have the vulnerable version of OpenSSL or the extension isn’t enabled, you’re fine. If that’s not the case, your phone is at risk – and you better be very careful about what you do until your operating system is patched.