Outage in Mangopay

Security Information Notice - Log4j 2 vulnerability

Resolved Major

December 13, 2021 - Started over 2 years ago - Lasted over 1 year
Official incident page

Need to monitor Mangopay outages?
Stay on top of outages with IsDown. Monitor the official status pages of all your vendors, SaaS, and tools, including Mangopay, and never miss an outage again.
Start Free Trial

Outage Details

Following the recent Critical Vulnerability Alert, from the US NIST and the French CERT on 10 December 2021, in the open-source Apache “Log4j 2" library, MANGOPAY has been assessing the impacts of this vulnerability on its systems: - We can confirm that this vulnerability does not impact our API code exposed to our customers. - However, some of the tools and pieces of software used internally could be impacted by this vulnerability. We are working with the different providers and software publishers to identify eventual vulnerabilities and roll out patches as soon as available. As this event is ongoing, we will keep providing regular updates on this API Status thread. Get to know more about this vulnerability: In English (US): https://nvd.nist.gov/vuln/detail/CVE-2021-44228 In French: https://www.cert.ssi.gouv.fr/alerte/CERTFR-2021-ALE-022/

Components affected

Mangopay MANGOPAY Production API

Latest Updates ( sorted recent to last )

RESOLVED 11 months ago - at 05/23/2023 11:57AM

This incident has been resolved.

MONITORING over 2 years ago - at 12/31/2021 03:53PM

The analysis to identify potential vulnerabilities on our third-party components is still ongoing.
None has been detected so far.

We will update this status when this analysis will be completed.

MONITORING over 2 years ago - at 12/13/2021 06:12PM

Following the recent Critical Vulnerability Alert, from the US NIST and the French CERT on 10 December 2021, in the open-source Apache “Log4j 2" library, MANGOPAY has been assessing the impacts of this vulnerability on its systems:

- We can confirm that this vulnerability does not impact our API code exposed to our customers.
- However, some of the tools and pieces of software used internally could be impacted by this vulnerability. We are working with the different providers and software publishers to identify eventual vulnerabilities and roll out patches as soon as available.

As this event is ongoing, we will keep providing regular updates on this API Status thread.

Get to know more about this vulnerability:
In English (US): https://nvd.nist.gov/vuln/detail/CVE-2021-44228
In French: https://www.cert.ssi.gouv.fr/alerte/CERTFR-2021-ALE-022/

Latest Mangopay outages

[PRODUCTION/ Banking Partners] Delays in cards refunds created on 06/04 - 8 days ago

Mangopay Sandbox Dashboard Disturbance - 9 days ago

Third-Party Payment Service Disruption: MB Way - 9 days ago

Third-Party Service Disruption: MB Way - 11 days ago

[SANDBOX] Disturbance on payments (Test Cards on Sandbox environment) - 24 days ago

Start monitoring Mangopay and all your cloud vendors in minutes

With IsDown, you can monitor all your critical services' official status pages from one centralized dashboard and receive instant alerts the moment an outage is detected. Say goodbye to constantly checking multiple sites for updates and stay ahead of outages with IsDown.

Start free trial

No credit card required · Cancel anytime · 3153 services available

Integrations with Slack Microsoft Teams Google Chat Datadog PagerDuty Zapier Discord Webhook

Setup in 5 minutes or less

How much time you'll save your team, by having the outages information close to them?

14-day free trial · No credit card required · Cancel anytime

Start today for FREE