Outage in Mangopay

Security Information Notice - Log4j 2 vulnerability

Resolved Major
December 13, 2021 - Started almost 4 years ago - Lasted over 1 year
Official incident page

Incident Report

Following the recent Critical Vulnerability Alert, from the US NIST and the French CERT on 10 December 2021, in the open-source Apache “Log4j 2" library, MANGOPAY has been assessing the impacts of this vulnerability on its systems: - We can confirm that this vulnerability does not impact our API code exposed to our customers. - However, some of the tools and pieces of software used internally could be impacted by this vulnerability. We are working with the different providers and software publishers to identify eventual vulnerabilities and roll out patches as soon as available. As this event is ongoing, we will keep providing regular updates on this API Status thread. Get to know more about this vulnerability: In English (US): https://nvd.nist.gov/vuln/detail/CVE-2021-44228 In French: https://www.cert.ssi.gouv.fr/alerte/CERTFR-2021-ALE-022/
Components affected
Mangopay MANGOPAY Production API

Need to monitor Mangopay outages?

One place to monitor all your cloud vendors. Get instant alerts when an outage is detected.

Try IsDown risk-free 14-day free trial · No credit card required
Latest Updates ( sorted recent to last )
RESOLVED over 2 years ago - at 05/23/2023 11:57AM

This incident has been resolved.

MONITORING almost 4 years ago - at 12/31/2021 03:53PM

The analysis to identify potential vulnerabilities on our third-party components is still ongoing.
None has been detected so far.

We will update this status when this analysis will be completed.

MONITORING almost 4 years ago - at 12/13/2021 06:12PM

Following the recent Critical Vulnerability Alert, from the US NIST and the French CERT on 10 December 2021, in the open-source Apache “Log4j 2" library, MANGOPAY has been assessing the impacts of this vulnerability on its systems:

- We can confirm that this vulnerability does not impact our API code exposed to our customers.
- However, some of the tools and pieces of software used internally could be impacted by this vulnerability. We are working with the different providers and software publishers to identify eventual vulnerabilities and roll out patches as soon as available.

As this event is ongoing, we will keep providing regular updates on this API Status thread.

Get to know more about this vulnerability:
In English (US): https://nvd.nist.gov/vuln/detail/CVE-2021-44228
In French: https://www.cert.ssi.gouv.fr/alerte/CERTFR-2021-ALE-022/

Latest Mangopay outages

Payment Processing Timeouts - 12 months ago
Elevated Error Rates - about 1 year ago
Elevated Error Rates - about 1 year ago
Elevated Error Rate for iDeal Payments - about 1 year ago
Elevated Error Rate- iDEAL payments - about 1 year ago

The Status Page Aggregator Built for IT Teams

With IsDown, you can monitor all your critical services' official status pages from one centralized dashboard and receive instant alerts the moment an outage is detected. Say goodbye to constantly checking multiple sites for updates and stay ahead of outages with IsDown.

Start free trial

No credit card required · Cancel anytime · 4522 services available

Integrations with Slack Microsoft Teams Google Chat Datadog PagerDuty Zapier Discord Webhook