Apache Log4j Vulnerability
Incident Report for AppRiver
This incident has been resolved.
Posted Nov 02, 2022 - 15:58 CDT
As of 10:45 PM Central Time on Wednesday, December 15th, 2021, we have reviewed all of our production systems, corporate internal IT systems, and all relevant third-party software for the presence of Log4j vulnerabilities as described by the vendor, and we have completed all vendor-recommended remediations with respect to those systems and third-party software.

We have also completed a review of our supported on-site (on-prem) products and found no Log4j vulnerabilities as described by the vendor in any of those products.

We also continue to monitor our systems (which does not include customer-premise products) for the purpose of detecting certain exploits known to leverage the Log4j vulnerability.
Posted Dec 16, 2021 - 21:15 CST