Okta/Sitel breach: Quandis Not Affected
The recent security breach at Okta’s via their partner Sitel does not affect Quandis or QBO-based systems. Quandis does not use Okta’s IDP platform.
Entries by epatrick
Apache Log4j2 Vulnerability: Quandis Not Affected
Quandis is not impacted by the Apache Log4j2 vulnerability flagged by CVE-2021-44228. Partners such as LogicMonitor, AWS, Microsoft and Google were impacted and have mitigated the issue as of December 11.
Apache Path Normalization Vulnerability: Quandis Not Affected
Quandis is not impacted by the Apache path normalization vulnerability flagged by CVE-2021-41773 and CVE-2021-42013. Quandis does not use Apache servers.
Kaseya VSA Software Vulnerability: Quandis Not Affected
Quandis does not use Kaseya VSA Software, and as such, we are not affected by the recent ransomware attacks. Does your company use Kaseya VSA Software? (Y/N) NO If you answered YES above: Have you scanned or otherwise assessed your networks to ensure unauthorized parties have not gained access? (Y/N) N/A Have you experienced any […]
Pulse Secure Connect Vulnerability: Quandis not Affected
Quandis does not use Pulse Secure Connect, and is not directly affected by the recently announced vulnerability. No third party data source that Quandis uses is known to use it either. However, the Department of Defense is still evaluating the impact of this vulnerability, so we do not yet have positive confirmation that DMDC (used […]
SolarWinds Orion breach: Quandis not affected
Quandis does not use the SolarWinds Orion software platform, and is thus not affected by this breach. We have also verified that our monitoring partners are also not affected by this breach. Please forward any detailed questions to compliance@quandis.com.
Shifting Control: Improving Default Management
Improving the default management process means putting more control into the hands of power users and relying less on IT to write rules and make changes. See our CTO’s article on default management technology in Servicing Management magazine.
Security Update: VENOM Vulnerability does not apply to Quandis-hosted sites
The recently discovered VENOM vulnerability does not apply to Quandis-hosted sites. An acronym for VIRTUALIZED ENVIRONMENT NEGLECTED OPERATIONS MANIPULATION, this applies to very specific virtualization software. Quandis does not have the affected software installed in any of our hosting environments. For more information about VENOM as it applies to our specific hosting sites: Hosting.com: neither KVM/QEMU nor Xen […]
Default Servicing Technology Landscape
Overview Since the introduction of LenStar, default management platforms have focused on managing default timelines. LPS Desktop, LenStar/Tempo, VendorScape, Quandis Loan Servicing and others do an excellent job at this: all parties involved with the default can view the timelines, and given the appropriate permissions, update the dates. However, keeping track of the default timeline dates […]
Scott Law Firm adopts Quandis Military Search Name Permutations
Quandis, Inc., a leading provider of mortgage servicing software, announced that Scott Law Firm, which serves the default servicing industry, is actively utilizing its new military search name permutation functionality. Scott Law Firm can now more easily and efficiently identify active duty military borrowers in the Department of Defense (DoD) database to comply with the Servicemembers […]