After conducting a thorough review, we have confirmed and verified that Log4J is not implemented as part of Brillium’s software application services.
Posted Jan 12, 2022 - 10:02 EST
Resolved
This incident has been resolved.
Posted Jan 10, 2022 - 16:40 EST
Monitoring
Brillium is aware of the recently disclosed security issue affecting the open-source Apache "Log4j2" utility. We are actively monitoring this issue, and are working on addressing it for any Brillium services which use Log4j2.
At the moment, we have identified no use of Log4j2 within our direct platform nor have we identified any vulnerabilities but will continue to monitor.
Should you have any question regarding Log4j2, please do not hesitate to contact us as support@brillium.com.
Posted Dec 21, 2021 - 06:47 EST
This incident affected: API & Integrations (API), Administration (User Administration and Authentication, Partner Central Custom Administration), and Assessment Builder (Assessment Authoring).