Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » New Shellshock worm seeks vulnerable systems at tens of thousands of IPs

New Shellshock worm seeks vulnerable systems at tens of thousands of IPs

2015/04/11

Softpedia - (International) Security researchers at Volexity observed that cybercriminals had amassed 26,356 internet protocol (IP) addresses belonging to systems vulnerable to the Shellshock bug for the Bash command shell found in many Linux and Unix systems, that allows attackers to execute arbitrary commands by appending them after a variable function. Scanning for vulnerable systems has since decreased and the malicious files were removed from the IP address hosting them.

Source: http://news.softpedia.com/news/New-Shellshock-Worm-Seeks-Vulnerable-Systems-at-Tens-of-Thousands-of-IPs-478233.shtml

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:24:03