Blissbook's security team is aware of the vulnerability in the Apache Log4j library (CVE-2021-44228).

We've investigated our exposure to this vulnerability and determined that Blissbook is adequately protected by existing systems in place. Blissbook itself does not use Java or the Java runtime, and therefore is not directly affected by this issue.

In order to understand our third-party vendors' exposure to this vulnerability, we've analyzed publicly available information or have contacted them directly for information when public information was not available. Based on the information reviewed, we are very confident there is no impact to Blissbook or Blissbook users.

In accordance with incident response procedures, we also reviewed our logs and found no evidence of customer data being impacted.

Although our investigation is complete, we will continue to review our systems and monitor the situation as needed to maintain the security of our platform.

Please contact support@blissbook.com if you have any additional questions or concerns.

Did this answer your question?