On December 9th, a remote code vulnerability was revealed in Apache’s Log4J, a commonly used logging system used by website developers. More information about the Log4J vulnerability, dubbed “Log4Shell” or “ShellShock” can be found at the following link to the CISA website: Apache Log4J Vulnerability Guidance | CISA
Go West IT notified customers yesterday about our initial response. Go West IT is still investigating the potential impact of this vulnerability on our systems, vendors, and customers. Our ongoing review of Go West IT systems and Go West IT vendors has not revealed any vulnerabilities in applications used internally at Go West IT or to provide our support services. We will continue to monitor vendor communications regarding this vulnerability and advise if any known incidents or risks are found with this evolving situation.
Go West IT is in the process of determining which servers, if any, were vulnerable and which, if any, were exploited. We have no indication at this time that any servers in our customer’s environments were exploited. Go West IT will open support requests for each customer where the vulnerability and/or exploitation is found.
A very long list of vulnerable products, including network devices and software, is being developed and maintained at the following Github link: log4shell/software at main · NCSC-NL/log4shell · GitHub.
Go West IT is devising strategies to look for the existence of Log4J across customer environments and we will open support request to address vulnerabilities as they are discovered. Work to remediate the vulnerability is “In-Scope” for customers using Go Managed | Proactive and Go Managed | Comprehensive services. Go West IT will contact customers that are not using these managed services to talk about the labor cost associated with remediation.
If you have specific questions or concerns about your environment as it relates to the Log4J vulnerability, please open a support request by emailing support@gowestit.com or calling our service desk at 303-795-2200, Option 1. If you have questions about, Go West IT’s environment or response to this vulnerability, please contact info@gowestit.com.