What is Shellshock? This infographic explains how a Shellshock attack works and how to stay safe

Shellshock, a serious vulnerability affecting Linux, UNIX and OS X computers, is making life difficult for IT admins, as vendors rush out patches to stay ahead of the cybercriminals trying to exploit this bug.

Like the Heartbleed bug in OpenSSL, Shellshock has a nasty-sounding name, far-reaching impact, and major consequences for security. Yet Shellshock is worse than Heartbleed in one important way — it could allow an attacker to take complete control of vulnerable machines.

If you’re looking for a little tutorial on Shellshock, we’ve created a simple infographic to explain the bug, how an attacker might exploit it, and what you can do to stay safe.

More Information About Shellshock

Listen to our podcast, and check out our expert articles for more information:

• Naked Security: Bash “Shellshock” vulnerability – what you need to know
• Naked Security: Apple patches OS X against Shellshock
• Forbes: Why You Could Be At Risk From Shellshock, A New Security Flaw Found In Linux, Mac OS X And More
• Sophos Blog: What you need to know about the Bash “Shellshock” vulnerability

How to Get Help

Sophos is powered by great people who work around the clock to keep you safe, from our threat intelligence experts at SophosLabs, to our support and sales teams.

To request a call back from one of our knowledgeable representatives, click here.