Apache Log4j 2 vulnerability (CVE-2021-44228)

Service announcement: we have been made aware of a remote code execution vulnerability in Apache Log4j 2.

Please be assured that there are no public facing services provided by Phoenix which are vulnerable to this exploit, and we are following National Cyber Security Centre (NCSC) guidance. Initially there were a small number of internal infrastructure components which were affected by this vulnerability and have since been remediated or turned off until a patch is available.

For more information about the event, read the latest news from Microsoft and VMware, and view the full list of products affected.

This is an ongoing event and we are continuing to track the developments. If you have any questions, concerns, or need any assistance, please contact our IT service desk on 01904 562207 or email [email protected].

Naomi Busuttil
Naomi Busuttil

Naomi is Phoenix's marketing copywriter with more than ten years' experience creating a variety of content for web, print, social media, and email marketing. With a background spanning all marketing disciplines gained notably within the housing, sustainability, and not-for-profit industries, Naomi is familiar with the challenges the public sector faces and is passionate about producing content with accessibility in mind.

See all posts by Naomi Busuttil