Kia Ora,
Impact summary:
After an event during a planned change on 12 March, 2024 at 7:22am NZDT, clients may notice events logged prior to 7:22am missing from their Graylog view. Any gaps will be rotated out of view once current logs reach 28 days of age.
Our investigations have determined there has been no security incident. Our security systems are operating normally, and all relevant logs are captured by our internal systems.
Graylog items logged before 12 March at 7:22am are unable to be restored for client-observability at this time.
For clients who require support during a security incident, logs can be provided upon service request.
What is Graylog:
The Silverstripe Graylog service provides visibility of system and application logs for each of your stacks, and is accessed via the Silverstripe Cloud dashboard. Logs in this view are visible for 28 days. This system is separate from our security logging, where all logs are retained for seven years for security and auditing purposes. Our SIEM (Security Information and Event Management) is not visible to clients.
Recommended actions for you:
No actions are required. Any gaps in Graylog items will be rotated out of view by April 10th.
If you require support as part of a security incident, our service desk can review and provide relevant logs upon request.
Ngā mihi,
Silverstripe Platform Engineering Team