The security issue announced for the log4j framework understandably raised concerns among security and IT professionals. Therefore, we want to let all our users know that the log4j vulnerability called “log4shell” does not affect Yodeck in any way.
Firstly, the log4j vulnerability affects software that uses the Java programming language and specifically those using the log4j logging framework. At Yodeck, all of our software, as well as our servers and Players, do not use Java anywhere. This means that you were, and of course are, safe from this vulnerability from day zero.
Furthermore, we closely monitor all new vulnerabilities announced and immediately apply security updates for all components used within Yodeck as a “hotfix”. That means that very important security updates are released ASAP, outside of our regular 6-week release cycle. We have done so in the past, and we continue to do so in the future, without requiring our clients to take any action whatsoever.
At Yodeck, we invest heavily in keeping your business safe and secure. We are the only digital signage provider certified under ISO-27001, which is top-notch international certification for security. We employ specific security protocols and processes, while we have also implemented features to keep you safe even in the remote event of a security breach. You can read more details on our security page and you can always reach out to our team and get any security-related questions answered.
So, stay calm. You are safe with Yodeck.