If you don’t yet know what HeartBleed is you can read about it here. It is a vulnerability in the OpenSSL cryptography library that allows hackers to gain access to a computer or server’s data.
Now hackers are exploiting this in a scheme to trick people into downloading and installing malicious software, as reported by The Hacker News.
Always be cautious and skeptical of any email you receive asking you to download an attachment. No matter how legitimate it may seem.