The critical log4j vulnerability, the logging library of the widely used Apache web server, was worldwide in the news. As part of our services make use of Apache web servers, we therefore screened them immediately. The initial conclusion was that the vulnerability is not present in our core services. Because we didn’t enable log4j there.
Afterwards, we looked into third party frameworks that we use. There, we detected the presence of the log4j function in the Elastic Search environment. A popular open source environment for real-time indexing and search. We urgently updated this framework with a log4j patch.
We did this vulnerability sweep on top of our standard security monitoring and maintenance protocol.
About Unold AG Unold, established in 1966 and headquartered in Hockenheim, Germany, has a long…
Automation has become an essential component of online retailers’ success. With so many tools available,…
The world of technology is constantly evolving, and so is the data that describes it.…
For medium and large-scale businesses, e-commerce automation is absolutely essential. It can be incredibly challenging…
Mobile commerce has been steadily growing over the years and is projected to reach 43.4%…
Turkey's e-commerce market experienced a rebound in 2023, with online spending more than doubling compared…