Dark Reading

'Shellshock' Bash Bug Impacts Basically Everything, Exploits Appear In Wild

"Shellshock," the critical remote command execution Bash bug disclosed yesterday, is now being exploited in the wild. Some affected software companies have released patches (which only partially fix ...
HHS

How to Mitigate Shellshock Risks

As news of the freshly discovered Bash bug known as Shellshock continues to spread, CISOs in all sectors are taking steps to mitigate the risks posed by the vulnerability. Similarly, industry ...
CSOonline

Shellshock Bash vulnerability being exploited in the wild, Red Hat says patch incomplete

On Wednesday, AusCERT and MalwareMustDie reported that Shellshock is being exploited in the wild. Shellshock is the name given to a vulnerability that exists in GNU Bash versions 1.14 through 4.3.
InfoWorld

Ubuntu 14.10 final beta released

In today's open source roundup: Canonical has released the final beta of Ubuntu 14.10 and its spins. Plus: How does Shellshock work? And how to see if your Linux computer is in danger from Shellshock ...
CSOonline

Shellshock Bash hackers found gearing up for broader attacks

Attackers exploiting the Shellshock vulnerability that was discovered in a widely used component of Mac OS X, Linux and Unix had infected by Thursday hundreds of systems with exploratory malware.
Dark Reading

Why Shellshock Remains a Cybersecurity Threat After 9 Years

The Shellshock vulnerability got a lot of attention when it was first disclosed in 2014 — both from the media and security teams. While that attention has waned in subsequent years, the Shellshock ...
Ars Technica

A Georgia election server was vulnerable to Shellshock and may have been hacked

Forensic evidence shows signs that a Georgia election server may have been hacked ahead of the 2016 and 2018 elections by someone who exploited Shellshock, a critical flaw that gives attackers full ...