Over the past few days we’ve received a number of questions concerning the recently discovered Log4j security flaw. We assure you that the FixMe.IT architecture has not been impacted by the Log4j vulnerability in any way.
What happened and what is Log4j?
Apache Log4j is one of the most popular Java-based libraries used by many companies across the world to enable logging in a variety of applications. Last week a remote code execution vulnerability was reported that can allow hackers to control Java-based servers and launch remote code execution attacks. As of today, most attackers exploit this vulnerability for the purpose of cryptocurrency mining at the expense of their victims. However, more sophisticated attacks could potentially emerge if the issue is not properly addressed.
Is FixMe.IT affected by the Log4j vulnerability?
FixMe.IT does not use Java or Log4j which means that our application is not affected by this vulnerability. We assure you that no further action is required with regards to the Log4j security flaw. Our team performs comprehensive security checks to ensure that the FixMe.IT infrastructure is fully protected against any existing and potential threats and would proactively inform you if any internal vulnerability was detected.
Learn More About FixMe.IT