Salsa Digital
 Status
Back
Maintenance

Immediate Security Mitigation – Hosting Infrastructure Update at 6:30 PM

Completed 26 Mar at 08:30pm AEDT.

api.salsa.hosting webhookhandler.salsa.hosting ui.salsa.hosting
Updated

Dear customers,

The emergency maintenance was completed on time. No issues or incidents were reported during or after the update, and all services remain stable.

Thank you for your support and understanding.

Posted 26 Mar at 08:53pm AEDT.
Completed

Maintenance completed

Posted 26 Mar at 08:30pm AEDT.
Updated

Dear customers,

The emergency update to the Nginx Ingress Controller has been completed across our hosting infrastructure. We are currently monitoring the status of all services to ensure everything continues to operate as expected.

There was no service disruption during the change, and all systems appear to be functioning normally. This update addressed a critical zero-day vulnerability, and we appreciate your understanding as we acted swiftly to protect all hosted services.

If you notice any unexpected behaviour or have any concerns, please raise a ticket via our support portal:
https://servicedesk.salsadigital.com.au/support/login

Thank you for your continued trust.

Posted 26 Mar at 07:12pm AEDT.
Started

Dear customers,

We received an alert yesterday evening related to this zero day vulnerability, https://www.wiz.io/blog/ingress-nginx-kubernetes-vulnerabilities. In Salsa Hosting, the Nginx Ingress Controller endpoint that is vulnerable to attack is not exposed externally. As such, there is no direct external network path to this endpoint, providing some protection. Internal access to the cluster is limited to only a handful of Kubernetes administrators. The likelihood of the risk occurring is "unlikely", however, the impact would be catastrophic, and extremely difficult to recover from. Given the severity of the risk, immediate rectification is required.

Today, we have completed testing the recommended version of the Nginx Ingress Controller in our test cluster. We will be releasing it to production at 6:30 PM AEDT tonight via an emergency change. The Nginx Ingress Controller is highly available so there should be no outage on your site as the change is rolled out. QuantCDN is also in place to provide cache content in the very unlikely event of any small outage on the hosting cluster. The change is across our entire infrastructure and is, unfortunately, not optional for any customers.

Please raise a ticket in the support desk if you experience any issues. https://servicedesk.salsadigital.com.au/support/login

Posted 26 Mar at 06:30pm AEDT.