Back to blog
Mar 31, 2022
2 minutes read
Platform

CM.com Response to zero-day in Spring Core Framework

On March 31st a severe vulnerability in the Spring Core Framework was discovered known as "Spring4Shell". With this post we would like to share with our customers how CM.com responded to this zero-day exploit. 

Cas Schalkx

On 31-03-2022 CM.com became aware of two vulnerabilities (CVE-2022-22965 and CVE-2022-22963) in the Spring Core Framework. We would like to share with our customers how we've acted upon the zero-day vulnerability.

Our software is safe

We've completed a full platform analysis of all our software and third-party applications (as published by the Dutch National Cyber Security Center) and found no exposed risks. All related software libraries have been updated by our product teams. The CM.com Security team is continuously scanning our software and has intensified their network monitoring to flag any possible related exploit attempts.

Tags
Cas Schalkx
is Product Manager at CM.com and helps companies to use communication technology and make a meaningful conversation with their audience.

Get Inspired

Jan 12, 2023 • Trust Center

What Is Smishing and How Can You Protect Yourself Against It?

Even if you’ve never heard of “smishing” you have almost certainly been the target of this type of cyber fraud. Smishing weaponizes SMS messages to scam recipients into disclosing sensitive personal information or to unwittingly infect a mobile device with malware.
Jan 04, 2023 • Trust Center

Tips to Help Prevent Fraud in SMS and Voice Traffic

With each technological advance, criminals find new ways to defraud businesses – and Communications Platform as a Service (CPaaS) is no exception. Organizations as diverse as Formula 1, the Dutch Red Cross, and DHL are enjoying the customer experience and conversion benefits of CM.com – and fraudsters want to get in on the act. Though we take every measure to assure your safety, it will not stop criminals from trying. But there are some additional steps you can take to help prevent fraud.
Jun 24, 2022 • Trust Center

The Trust Center: a Clear Insight in Security, Privacy, Risk and Compliance Within CM.com

At CM.com, we enable organizations to connect to their customers and offer them a superior customer experience through our state-of-the-art cloud software. Transparency, quality, and trustworthiness are at the core of our products and services. This is why we are happy to announce the introduction of the Trust Center, a place where everyone can have insight into security, privacy, risk, and compliance within CM.com.
Dec 14, 2021 • Platform

CM.com Response to the Log4J Vulnerability

On 10-12-2021 CM.com became aware of the Log4J security vulnerability also known as CVE-2021-44228. We would like to share with our customers how we've acted upon the zero-day vulnerability.
Sep 01, 2021 • Security

7 Benefits of Using Multi-Factor Authentication

Protecting customer data is a priority for every modern business. One of the most secure ways to verify customer information is multi-factor authentication. In this blog, we’ll discuss the top benefits of multi-factor authentication and explain why it’s a must-have for mobile-native businesses.
Aug 12, 2021 • Security

Multi-Factor Authentication Use Cases

Multi-factor authentication, or MFA, is one of the most effective ways for businesses to protect their systems and customers’ online accounts from hacking, spamming, data theft, and more. Let’s take a look at some common multi-factor authentication use cases in high-risk industries that could benefit from using MFA in their security protocols.
Aug 05, 2021 • SMS

Opt-In Policies for SMS: How to Stay Compliant

Getting permission to text your customers is one of the first rules of SMS marketing. Opt-in text messaging protects consumers by reducing unwanted spam and ensuring they only receive texts from businesses they actually want to hear from. Today we’ll go over why opt-in text messaging is required for SMS compliance and how to use SMS opt-in policies to obtain legal permission to text your customers.
Jan 11, 2021 • Sign

Introducing Sign 2.0: New UX Design for E-Signatures

Bringing you the latest exciting design enhancements, based on current UX insights
Global
CM.com logo +31 (0) 76 572 70 00

Is this region a better fit for you?

Go