Brønnøysundregistrene: Disturbances with the Brønnøysundregistrene lookup services & BankID AML due to widespread security vulnerability

Resolved
Resolved

Brønnøysundregistrene has patched the security hole and re-enabled their services. BankID has also reported that the AML organization service is operational again. They are both monitoring for any remaining issues. Thank you for your patience.

Avatar for
Updated

After further technical investigation, we can confirm that Verified is not affected by the Log4J security vulnerability.

We will keep this status updated with the latest info from Brønnøysundregistrene and BankID AML.

Avatar for
Updated

BankID AML for organizations is also experiencing issues due to their reliance on Brønnøysundregistrene. They are saying that the issue has been identified and a fix is being implemented.

Info from BankID: The BankID AML organization search is failing. The reason is an ongoing incident at Brønnøysundregistrene affecting their APIs. We are following the situation closely while waiting for a solution.

https://bankid-services.statuspage.io/incidents/q2ckn5njbnlp

Avatar for
Updated

Brønnøysundregistrene (and many other websites) have been affected by a newly discovered, widespread security hole in an open-source Java library; Log4J. Templates utilizing Brønnøysundregistrene's API for company lookups may experience issues due to this.

During initial investigation, Verified is unaffected by this hole, but we are furthering our investigation into all areas of the platform.

Details: https://www.brreg.no/driftsmeldinger Info regarding the security hole: https://www.wired.com/story/log4j-flaw-hacking-internet/

Avatar for
Identified

Lookup service Brønnøysundregistrene has problems with its data lookup services.

Please read more at https://www.brreg.no/driftsmeldinger/ (Norwegian)

Avatar for André
André
Began at:

Affected components
  • Integrations
    • Brønnøysundregistrene
    • BankID AML