Your internet browser isn't supported.

For security reasons, we no longer support Internet Explorer. Please upgrade to an alternate browser to see all functionality and content on the website.

Cybersecurity

As building owners and operators expand their digital footprint, it becomes imperative to protect the availability, integrity and confidentiality of buildings’ systems including lighting systems. At Cooper Lighting Solutions, cybersecurity is at the core of our secure by design approach to product design where we manage cybersecurity risks in our products throughout the entire product life cycle – from product inception to deployment and maintenance.

To achieve this, we have established a Cooper Lighting Solutions Cybersecurity (CLSC) team composed of seasoned cybersecurity experts that are responsible for developing Cooper Lighting Solutions cybersecurity requirements based on industry standards and in-house best practices, conducting threat modeling and cybersecurity analysis and verifications for our products and services, working with third party certified cybersecurity labs to certify our products as well as for managing security events.

Latest News

Vulnerabilities in the Apache Log4j ("Log4Shell")

Cooper Lighting Solutions is aware of the security vulnerabilities in Apache Log4j (CVE-2021-44228 and CVE-2021-45046), also named "Log4Shell". A security advisory bulletin was issued on 2021-12-15 and will be updated in the following days as more information becomes available.  

Cooper Lighting Solutions Cybersecurity (CLSC)

The Cooper Lighting Solutions Cybersecurity team investigates all reports of security issues and publishes Security Advisories for validated security vulnerabilities that directly involve Cooper Lighting’s products and systems which require applying an update, performing an upgrade, or other customer action. 

As part of the ongoing effort to help Operations and IT Teams manage security risks and help keep systems protected, the CLSC team discloses a security advisory bulletin that contains the required information necessary to assess the impact of a security vulnerability and solutions to remediate the vulnerabilities.

CVSS Score

10

Document Title

Apache Log4j Vulnerabilities (Log4Shell, CVE-2021-44228, CVE-2021-45046) – Impacting to Cooper Lighting Solutions Products.
(View PDF)

Last Update

2021-12-21

Vulnerability Disclosure

Signify supports coordinated vulnerability disclosure, and encourages responsible vulnerability testing by security researchers and by customers, with responsible reporting to Signify.

Refer to our Vulnerability Disclosure web page to submit reports for vulnerability findings.