New Relic Agent vulnerability 7 Dec 12
New Relic have notified us of a security problem affecting the New Relic agent (gem) prior to version 3.5.3.
The New Relic security advisory warns that the New Relic gem was transmitting database login details to New Relic, where they were not stored, but potentially could have been intercepted.
The risk to Brightbox customers who use New Relic is low, as Brightbox shared and dedicated MySQL clusters are not exposed to access from the Internet. Nevertheless, customers who are using New Relic should still upgrade to the latest version of the New Relic gem as soon as convenient.