On Friday December 10th 2021, Castor became aware of a critical severity zero-day exploit known as “Log4Shell” in the Log4j library, which is widely used in numerous systems, websites, applications and digital services. We reacted immediately and triage determined our services were NOT affected.

Subsequently, on Tuesday, December 14th 2021, and Saturday, December 18th 2021 two more CVEs were published also relating to Log4j2. Triage  determined that our products are also NOT affected.

Evaluation of our supply-chain and other key-suppliers for the Castor also did not indicate any added risk for our services. We will continue to monitor current, past and future events and will take appropriate actions when necessary.

Please reach out to us if you have any concerns or further questions at support@castoredc.com