Cumulocity IoT Status - log4j exploit

log4j exploit - critical issue

Incident Report for Cumulocity IoT

Resolved

Marking the incident as completed now, as all the Cumulocity IoT Platforms are fully functional.
- apj.cumulocity.com
- cumulocity.com
- us.cumulocity.com
- emea.cumulocity.com
- eu-latest.cumulocity.com
In case of any issues observed, kindly requesting to report a support ticket as usual. Thank you so much again for your continued support!

Posted Dec 13, 2021 - 15:57 CET

Monitoring

All of our Cumulocity IoT Platforms are brought back to service and fully functional now.
- apj.cumulocity.com
- cumulocity.com
- us.cumulocity.com
- emea.cumulocity.com
- eu-latest.cumulocity.com

In case of any issues observed, kindly requesting to raise a Support ticket as usual. We keep the incident in the observation for a couple of days to monitor how the system is performing.

Once again apologies for the interruption of our services happened and sincerely thank you so much for all your support and standing with us to with stand this entire Internet world exploit.

Posted Dec 11, 2021 - 18:06 CET

Update

We have applied the patch fix to the following Cumulocity IoT Platforms also.
- us.cumulocity.com
- emea.cumulocity.com
- eu-latest.cumulocity.com

So, all of our IoT Platforms are working and fully functional now. Thank you so much for your continued support and understanding.

Posted Dec 11, 2021 - 17:58 CET

Update

We have applied the patch fix to the following Cumulocity IoT Platforms.
- apj.cumulocity.com
- cumulocity.com

We continue working on bringing the other Platforms also safely.
We will keep you updated soon. Thank you for your continued support.

Posted Dec 11, 2021 - 16:43 CET

Identified

Thank you again for your continued support and understanding.
We are applying the tested patches and working on safely bringing back our IoT Platforms to live. We keep you updated again once fully functional soon.
Apologies for the inconvenience caused.

Posted Dec 11, 2021 - 15:11 CET

Update

Thank you for your continued support, understanding and patience.
We are continuing on the investigations and also testing the workarounds.
We are working on bringing all the systems live in a safe manner.

Posted Dec 11, 2021 - 09:54 CET

Update

We are continuing to investigate this issue.

Posted Dec 10, 2021 - 23:48 CET

Investigating

Dear all,

we have been impacted by exploit for java log4j
Links: https://www.bleepingcomputer.com/news/security/new-zero-day-exploit-for-log4j-java-library-is-an-enterprise-nightmare/
https://www.zdnet.com/article/security-warning-new-zero-day-in-the-log4j-java-library-is-already-being-exploited/

As matter of precaution, we have stopped platforms in order to identify if they have been compromised.

Sorry for any inconvenience caused.

Posted Dec 10, 2021 - 23:40 CET

This incident affected: eu-latest.cumulocity.com (eu-latest.cumulocity.com API Services, eu-latest.cumulocity.com MQTT Services), cumulocity.com (cumulocity.com API Services, cumulocity.com MQTT Services, cumulocity.com LWM2M Service), us.cumulocity.com (us.cumulocity.com API Services, us.cumulocity.com MQTT Services), and emea.cumulocity.com (emea.cumulocity.com REST API, emea.cumulocity.com MQTT API).