Caution: Watch Out for Shellshock, the Latest Vulnerability That’s Spreading Rapidly!

Bash SecurityCould Potentially Be More Dangerous Than the Infamous Heartbleed!

A major vulnerability, CVE-2014-6271, has been spreading rapidly and impacting a wide range of businesses. CVE-2014-6271, also known as “shellshock,” impacts “bash” software, which is used in most business computers. According to some researchers, shellshock could potentially be more dangerous than heartbleed, the open/SSL bug that had most business owners in a state of panic about their security a few months ago!

So how does the shellshock vulnerability work? Well, the vulnerability allows attackers to inject their own malicious code into bash, a command line interface that connects users to Unix-based systems. Once the attacker injects malicious code into bash, they’re able to:

  • Access sensitive information.
  • Steal business data.
  • Execute code to slow performance.

While bash was written over 30 years ago, it’s transformed into one of the most widely used utilities in the business environment. In fact, OS X, Linux, Windows, and Android often run bash. In addition, web servers commonly run bash as well; which means the vulnerability puts a lot of businesses at risk.

Chances Are, Most of Your Systems Are Running Bash – Don’t Forget to Apply the Latest Security Patches & Bug Fixes on All of Your Workstations!

When it comes to vulnerabilities like shellshock, it’s fundamental to ensure you’re applying the latest security patches and bug fixes on all of your workstations; otherwise, you’re open to malware and viruses infecting your network. Aside from applying the latest security patches and bug fixes, what can be done to stay protected? Here’s a few ideas:

  • Download legitimate anti-virus software and keep the software up-to-date, then make sure you’re scanning for viruses on a regular basis.
  • Install a reliable firewall and make sure it’s configured properly to block unauthorized or dangerous traffic.
  • Adjust your browser’s security settings to increase its ability to combat intrusions effectively.

According to Robert Graham, a Security Researcher, “While the known systems, like your web server, are patched, unknown systems remain unpatched. We saw that with the heartbleed bug, six months later, hundreds of thousands of systems remain vulnerable.”

He continued, “These systems are rarely things like web servers, but are more often things like Internet-enabled cameras. Internet-of-things devices, like video cameras, are especially vulnerable because a lot of their software is built from web-enabled bash scripts.”

Feeling concerned about shellshock? To learn more, or to schedule a no-obligation security assessment, give us a call at (954) 717-1990 or send us an email at sales@laninfotech.com. LAN Infotech is here to help you minimize the risk of an attack or infection.

Fort Lauderdale Computer Networks
Network Services in Fort Lauderdale
Network Consulting in Fort Lauderdale
Fort Lauderdale Data Backup
Data Security Fort Lauderdale
 
Client Feedback

“LAN Infotech has been an exceptional resource for our organization. They provide consistent knowledgeable network engineers, round the clock monitoring and are invaluable in our IT infrastructure decision-making process. Their level of customer service has been top-notch and exceeds our expectations – we look forward to a continued partnership with LAN Infotech.”

—Janice M. Pennington
Vice-President of Finance & Administration
National Multiple Sclerosis
Society South Florida Chapter
read more»

Featured IT Services Fort Lauderdale Articles

LAN Infotech Recognized as Leading Microsoft Marketing Partner Worldwide

The team of IT specialists from LAN Infotech are thrilled to announce that they have been recognized on Fifty-Five and Five’s Inbound Marketing Excellence Report as one of the top 250 Microsoft mark

Read more

Featured IT Services

IT Consulting Advice for Fort Lauderdale: Taking Care of Your Employees Is Taking Care of Your Business!

Quid Pro Quo An IT consulting firm in Fort Lauderdale will usually advise that you get what you give. This is the core principle which defines most working relationships. The employer gives the em

Read more

Featured IT Services

IT Services Business Advice: Do You Really Need a Management Consultant in Fort Lauderdale?

Eliminate the Middleman IT services in Fort Lauderdale need not cost an arm and a leg to provide services your own organization could source internally. You want a consultation agency willing to he

Read more

Featured IT Services