Blog>Matrix requirements statement on log4shell scare

Support iconSupportPartners iconPartners
English
DeutschFrançais
Matrix Requirements logo
Platform
Product
ALMALM
QMSQMS
Persona
DeveloperR&D
RAQARAQA
CTOCTO
Use case
TimeReducing Time on Paperwork
StarRequirement & Risk Management
Pencil and rulerTraceability In Design
StethoscopeSxMD (SaMD, SiMD)
TodoPreparing Regulatory Submissions
ComplianceBecoming Compliant
CycleManaging Product Development
LaptopDigital Quality Management
StartupsMedtech Startup
Pricing
Resources
Inspiration
Customer success storiesCustomer success stories
BlogBlog
CommunityCommunity
Explainer videosExplainer Videos
Learn
KnowledgebaseKnowledge Base
GuidesGuides
Events and webinarsEvents & webinars
Product FAQProduct FAQ
Tools
Key featuresKey features
CycleEssential Integrations
Pencil and rulerROI Calculator
About usThe Latest Release
CareersMedtech Startup
Developers
Company
Learn more
About usAbout us
CareersCareers
Contact usContact us
Free trialDemo
Button
Platform
Product
ALMALM
QMSQMS
Persona
DeveloperR&D
RAQARAQA
CTOCTO
Use case
TimeReducing Time on Paperwork
StarRequirement & Risk Management
Pencil and rulerTraceability In Design
StethoscopeSxMD (SaMD, SiMD)
TodoPreparing Regulatory Submissions
ComplianceBecoming Compliant
CycleManaging Product Development
LaptopDigital Quality Management
StartupsMedtech Startup
Pricing
Resources
Inspiration
Customer success storiesCustomer success stories
BlogBlog
CommunityCommunity
Explainer videosExplainer Videos
Learn
KnowledgebaseKnowledge Base
GuidesGuides
Events and webinarsEvents & webinars
Product FAQProduct FAQ
Tools
Key featuresKey features
CycleEssential Integrations
Pencil and rulerROI Calculator
About usThe Latest Release
CareersMedtech Startup
Developers
Company
Learn more
About usAbout us
CareersCareers
Contact usContact us
Free trialDemo

Matrix Requirements statement on log4shell scare

December 13, 20210 min read

After last week's abundant press coverage for the Log4shell vulnerability, we'd like to reassure our customers.

We don't use log4j in MatrixALM/QMS.

Furthermore we ensure all our servers use the latest version of the Java runtime, which would also have mitigated the threat.

We take security very seriously, that is why we have the following measures in place:

  • We are ISO27001 certified (we actually have the re-certification in 2 days)

  • We have a bug bounty program

  • We have regular consultations with security companies to go over our operations

Over the last 12 months we also implemented a way to replicate all our customers' data to secondary servers. This means that if we lose our primary servers, our customers can still access their data through the replication (in read only mode).

Don't hesitate to contact us if you need more details about our operations and security.

About the Author
Yves Berquin
Co-Founder