Incident Notification: [Monday, Dec. 20., 2021, 7:31 p.m. (ET)] Hoylu Incident Alert: The Apache Log4J – High Impact

Incident Notification: [Monday, Dec. 20., 2021, 7:31 p.m. (ET)] Hoylu Incident Alert: The Apache Log4J – High Impact

 

Late last week, Hoylu identified, through our monitoring processes, our systems were impacted by the global Apache Log4J security incident (Friday, December 07, 2021). This issue, through our investigation, could have potentially impacted all Hoylu clients.

 

Once we became aware of the incident, we immediately took action to scan our codebases and the third-party libraries we utilize for logging. Log4J is one of the resources we utilize for logging. Fortunately, 95% of our logging services are built upon .NET technologies and were not impacted by this global incident.

 

At this time, we have identified one minor issue, which we were able to correct immediately. As of now, we have not found any instances of vulnerabilities in our systems. All client information remains secure and is not compromised.

 

Before this incident, we implemented an automated security tool (SIEM) that continuously supports threat detection, compliance, and security incidents. Hoylu proactively monitors all our applications systems at the highest level as a best practice.

 

Any open tickets regarding this issue will continue to be responded to through our Customer Success Team.