January 3, 2022

RiskTool has not been impacted by the Apache Log4j vulnerability

We know you're busy, so we'll get straight to the point: RiskTool is not impacted by the Apache Log4j vulnerability.

If you're not familiar with this vulnerability and are interested in learning more, keep reading.... 

You may have heard that on Thursday, December 9th, an exploit in the popular Java logging library Apache Log4j was discovered potentially allowing a remote attacker to gain access and control to systems using the library. (CISA guidance) 

RiskTool Technologies has performed an in-depth analysis of its internal systems and codebase and has taken any necessary action to patch potential vulnerabilities related to this exploit. In addition, we performed a thorough review of security audit logs and verified there were no indicators of attempts to exploit this vulnerability against RiskTool services. 

At this time, we are confident that the RiskTool product has not been impacted by this vulnerability. The security of our product and our customer's data is our top priority. This has our highest level of attention and we are dedicated to continuously monitoring new information from vendors and other sources.  We will provide more updates, if necessary.

If you have any questions or concerns, please call us at  877-700-2332 or email sales@risktool.com

Thank you,

The RiskTool Technologies Team