Entries by epatrick

First American Security Incident

Quandis is issuing an update on a security incident that impacted a Quandis business partner, First American. We want to assure our valued customers that the incident is isolated and has no effect on any of our products, except for Title Direct customers routing title orders to First American Title. On December 21, we were made […]

Fidelity National Financial Security Incident

Quandis is issuing an update on a security incident that impacted a Quandis business partner, Fidelity National Financial (FNF). We want to assure our valued customers that the incident is isolated and has no effect on any of our products, except for Title Direct customers routing title orders to ServiceLink. On November 28, we were […]

Protecting Service Member Data Amidst National Security Concerns

In the wake of recent news highlighting national security risks associated with the sale of service member data, it’s imperative to reiterate our unwavering commitment to safeguarding the privacy and integrity of service members’ information at Quandis Military Search (QMC). Our automated service ensures that no Quandis employees are involved in data processing, and it […]

HTTP/2 Rapid Reset Vulnerability: Quandis Not Affected, Cloud providers have remediated

Vulnerabilities in the HTTP/2 protocol were recently announced a per CVE-2023-44487. Quandis uses cloud services from AWS, Azure and Google. These cloud providers have remediated the HTTP/2 issue as per the links below. AWS Bulletin Google Update Microsoft Response Our web applications are hosted in AWS which are fronted by AWS Application Load Balancers, and […]

Kaseya VSA Software Vulnerability: Quandis Not Affected

Quandis does not use Kaseya VSA Software, and as such, we are not affected by the recent ransomware attacks. Does your company use Kaseya VSA Software? (Y/N) NO If you answered YES above: Have you scanned or otherwise assessed your networks to ensure unauthorized parties have not gained access? (Y/N) N/A Have you experienced any […]

Pulse Secure Connect Vulnerability: Quandis not Affected

Quandis does not use Pulse Secure Connect, and is not directly affected by the recently announced vulnerability. No third party data source that Quandis uses is known to use it either. However, the Department of Defense is still evaluating the impact of this vulnerability, so we do not yet have positive confirmation that DMDC (used […]