Welcome to Maiden Century's Trust Center. Our commitment to data privacy and security is embedded in every part of our business. Use this Trust Center to learn about our security posture and request access to our security documentation.
Furthermore, our ongoing dedication to enhancing data protection measures entails regular assessments and updates to adapt to evolving security landscapes. By entrusting Maiden Century, you can rest assured that your sensitive information is safeguarded with the utmost vigilance. We continuously strive to exceed industry standards, offering comprehensive security features and proactive monitoring to mitigate risks effectively.
Trust Center Updates
AWS - Operational issue - Multiple services
Oct 20 3:53 PM PDT all Maiden Century services are fully restored and operating normally. The earlier disruption was caused by an AWS US-EAST-1 outage related to DynamoDB DNS resolution issues, which AWS resolved by 3:01 PM PDT on October 20. Our infrastructure has recovered, and we continue to monitor systems to ensure stability.
Oct 20 7:29 AM PDT- AWS services in the US-East-1 region are showing strong recovery. The IDEA Platform is largely stable, though some users may still see brief slowdowns or delays. Our team continues to monitor closely with AWS. All data remains secure.
Oct 20 12:11 AM PDT - We are currently experiencing intermittent service issues with the IDEA Platform, due to an ongoing outage at our cloud provider, Amazon Web Services (AWS). The incident originates in the US-East-1 region, where AWS is reporting elevated error rates and networking latency affecting multiple services globally.
As a result, some users may experience slower load times, temporary unavailability of certain platform features, or delays in background processing. Our engineering and infrastructure teams are closely monitoring the situation and are actively coordinating with AWS to minimize disruption. All systems and customer data remain secure and uncompromised.
We will continue to provide updates here as AWS restores full functionality.
Maiden Century Response to Sisense Breach
We're aware of Sisense's breach disclosure. We're not a customer of their platform so we have no direct impact. However, just like most companies are, we're still in the process of reaching out to all of our critical third-parties to identify any potential exposure from them. So far, we have not discovered any.
Maiden Century Response to liblzma backdoor vulnerability CVE-2024-3094
On March 29, 2024, we became aware of a backdoor vulnerability liblzma [CVE-2024-3094] and promptly investigated all of our environments against this new threat. After thorough investigation, we found no vulnerable versions anywhere in our environment.
Additional resources:
Global announcement - OSS Security Notification:
https://www.openwall.com/lists/oss-security/2024/03/29/4
https://access.redhat.com/security/cve/CVE-2024-3094
Link to CSM Security Center notification:
Link to CSM Vulnerabilities explorer:
https://app.datadoghq.com/security/csm/vm?query=status%3AOpen%20cve%3ACVE-2024-3094%20&group=vulnerability
Confirmation of no impact from CircleCI's January 2023 security incident
Maiden Century does not use CircleCI for continuous integration and continuous delivery.
Confirmation of no impact from Okta’s January 2022 Compromise
Okta released a statement on March 22nd, 2022 regarding a security incident that may have affected their customers. Maiden Century leverages Okta as an authentication provider for internal authentication. Our team has received notice from Okta that neither we nor our customers were affected by this incident.


