Brønnøysundregistrene: Disturbances with the Brønnøysundregistrene lookup services & BankID AML due to widespread security vulnerability

Brønnøysundregistrene has patched the security hole and re-enabled their services. BankID has also reported that the AML organization service is operational again. They are both monitoring for any remaining issues. Thank you for your patience.

After further technical investigation, we can confirm that Verified is not affected by the Log4J security vulnerability.

We will keep this status updated with the latest info from Brønnøysundregistrene and BankID AML.

BankID AML for organizations is also experiencing issues due to their reliance on Brønnøysundregistrene. They are saying that the issue has been identified and a fix is being implemented.

Info from BankID: The BankID AML organization search is failing. The reason is an ongoing incident at Brønnøysundregistrene affecting their APIs. We are following the situation closely while waiting for a solution.

https://bankid-services.statuspage.io/incidents/q2ckn5njbnlp

Brønnøysundregistrene (and many other websites) have been affected by a newly discovered, widespread security hole in an open-source Java library; Log4J. Templates utilizing Brønnøysundregistrene's API for company lookups may experience issues due to this.

During initial investigation, Verified is unaffected by this hole, but we are furthering our investigation into all areas of the platform.

Details: https://www.brreg.no/driftsmeldinger Info regarding the security hole: https://www.wired.com/story/log4j-flaw-hacking-internet/

Lookup service Brønnøysundregistrene has problems with its data lookup services.

Please read more at https://www.brreg.no/driftsmeldinger/ (Norwegian)