JumpCloud unaffected by the CloudFlare #cloudbleed breach

By Greg Keller Posted February 24, 2017

As many of you have learned today, a fairly large security vulnerability was exposed by one of the world’s largest content delivery networks (CDN), CloudFlare. Now known as the #cloudbleed vulnerability, CloudFlare has assembled an informational post about the incident which you can find here.

JumpCloud is unaffected by this newly reported vulnerability. We have also completed a scan of each business units services and their potential impact of #cloudbleed, and there were no direct risks exposed.

What can you do to evaluate your own risk of exposure?

  1. Visit this public Github project which is being communally updated to expose websites possibly affected by #cloudbleed
  2. Ensure you have a well maintained and curated inventory of your web services which you may leverage to ensure your key account passwords are rotated.
  3. Ensure multi-factor authentication (2FA or MFA) is set up for your accounts moving forward.

As always, feel free to send us any questions you may have regarding threats and vulnerabilities to our security team. We’ll be happy to answer any questions.

Greg Keller

Greg is JumpCloud's Chief Product Officer, overseeing the product management team, product vision and go-to-market execution for the company's Directory-as-a-Service offering. The SaaS-based platform re-imagines Active Directory and LDAP for the cloud era, securely connecting and managing employees, their devices and IT applications.

Recent Posts