Shellshock, a serious vulnerability affecting Linux, UNIX and OS X computers, is making life difficult for IT admins, as vendors rush out patches to stay ahead of the cybercriminals trying to exploit this bug.
Like the Heartbleed bug in OpenSSL, Shellshock has a nasty-sounding name, far-reaching impact, and major consequences for security. Yet Shellshock is worse than Heartbleed in one important way — it could allow an attacker to take complete control of vulnerable machines.
If you’re looking for a little tutorial on Shellshock, we’ve created a simple infographic to explain the bug, how an attacker might exploit it, and what you can do to stay safe.
More Information About Shellshock
Listen to our podcast, and check out our expert articles for more information:
- Naked Security: Bash “Shellshock” vulnerability – what you need to know
- Naked Security: Apple patches OS X against Shellshock
- Forbes: Why You Could Be At Risk From Shellshock, A New Security Flaw Found In Linux, Mac OS X And More
- Sophos Blog: What you need to know about the Bash “Shellshock” vulnerability
How to Get Help
Sophos is powered by great people who work around the clock to keep you safe, from our threat intelligence experts at SophosLabs, to our support and sales teams.
To request a call back from one of our knowledgeable representatives, click here.
Live Consulting – Denver IT Support | Have you heard of the bug that might be worse than Heartbleed?
[…] in the know about how this bug might affect your information and seeking out helpful tips are crucial for you systems and your state of […]
How to Teach Computer Security Skills - Jessysaurusrex
[…] across the web, their ethical, white hat counterparts uncovered code flaws like Heartbleed andShellshock that weakened parts of the critical infrastructure of the web. In this new web order, the question […]
Are you protecting your Macs? See how to avoid “Mac malice” and other IT sins | Sophos Blog
[…] that attackers can exploit to compromise users and steal data. You may have heard of Shellshock, FREAK, or Goto Fail – all of those security bugs affected […]