As many of you have learned today, a fairly large security vulnerability was exposed by one of the world’s largest content delivery networks (CDN), CloudFlare. Now known as the #cloudbleed vulnerability, CloudFlare has assembled an informational post about the incident which you can find here.
JumpCloud is unaffected by this newly reported vulnerability. We have also completed a scan of each business units services and their potential impact of #cloudbleed, and there were no direct risks exposed.
What can you do to evaluate your own risk of exposure?
- Visit this public Github project which is being communally updated to expose websites possibly affected by #cloudbleed
- Ensure you have a well maintained and curated inventory of your web services which you may leverage to ensure your key account passwords are rotated.
- Ensure multi-factor authentication (2FA or MFA) is set up for your accounts moving forward.
As always, feel free to send us any questions you may have regarding threats and vulnerabilities to our security team. We’ll be happy to answer any questions.