Cashfac’s Response to the Log4j Vulnerability

Cashfac’s response to news of the active exploitation of a zero day vulnerability in a common component of java-based software, known as Log4j

Vulnerability in Log4j component of java-based software notified on 10/12/21 – https://nvd.nist.gov/vuln/detail/CVE-2021-44228.

Cashfac has reviewed all components of its technology. Our review has not highlighted any material exposure to the Log4j vulnerability that would impact the use of Cashfac technology.

The optional reporting dashboard component is now back on-line following a technical investigation and supplier confirmation.

Our Security team will continue to track developments, related vulnerabilities and we will provide an update if the status changes. For more information please contact the Service Desk.

Additional information

We leverage commercial threat intelligence services in real-time and monitor notified changes in attack patterns.

We continue to work with our suppliers to ensure third party risk is understood and managed out.

John Ferguson, Chief Risk Officer

You might also like

Understanding Cashfac in Property Management
News & Blog

Understanding Cashfac in Property Management

This article is a guide for property managers who are contemplating the deployment of Cashfac for operational cash management, changing bank, expanding through mergers or

Read more

Healthcare Share: the evolving market with an identity crisis
News & Blog

Healthcare Share: the evolving market with an identity crisis

Our latest blog looks at how firms in the evolving US healthcare share market can ease their growing pains, differentiation and regulatory challenges

Read more

On-Demand Webinar: Open Banking – Wait and See or Be a First Mover
Videos

On-Demand Webinar: Open Banking – Wait and See or Be a First Mover

In this webinar we explored the opportunities and risks of Open Banking for the Wealth and Investment industry

Read more