Bash Bug - Security Intelligence

Recent research suggests that cybercriminals are targeting BusyBox, a popular open-source software system, using the Bashlite Shellshock variant. Some estimate that more than 1 billion attacks can be attributed to this vulnerability.

news

Latest Shellshock Attack Uses Bashlite to Target Devices Running BusyBox

The Shellshock vulnerability has spawned a new wave of attacks using Bashlite, a malware variant aimed at devices using BusyBox open-source software.

November 18, 2014 | By Shane Schick

news

In the aftermath of the Heartbleed and Shellshock vulnerabilities, it is clear that there are many similarities between the two, including their main targets — Web services — and how easy they are to exploit. How long will it take to fix these issues?

article

IBM X-Force Perspective on the Aftermath of Heartbleed and Shellshock

With the Bash Shellshock exploit still clouding our vision, it's easy to lose sight of the Heartbleed OpenSSL vulnerability. How are the two similar?

October 29, 2014 | By Chris Poulin

article

When implementing the cure for the recently discovered Shellshock vulnerability, organizations must assess their endpoint environment and then deploy and manage patches for the different types of operating systems found in their environment.

article

Shellshock: Prevent, Detect and Respond

To help organizations address Shellshock, IBM provides endpoint security solutions that can help prevent, detect and respond to the Shellshock threat.

October 10, 2014 | By Rohan Ramesh

article

Coming on the heels of the well-known Heartbleed OpenSSL vulnerability, the Bash bug has been discovered. The potential extent of its impact is not yet known, though experts speculate that a worm to exploit the vulnerability will be created soon.

news

Shellshock: Where the Bash Bug Could Hit the Hardest

The Bash bug, a new vulnerability known as Shellshock, could have a sizable impact on an untold number of devices, according to security experts.

September 26, 2014 | By Shane Schick

news

Many of Baltimore’s City Services Still Offline Two Weeks After Ransomware Attack

Hundreds of Thousands of Users Targeted Daily With Would-Be WannaCry Imitators

Phishing Campaign Delivers Multi-Feature, Open-Source Babylon RAT

More Than 100 US Businesses Affected by Ryuk Ransomware Since August 2018, Finds FBI

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

GozNym Closure Comes in the Shape of a Europol and DOJ Arrest Operation

The Decline of Hacktivism: Attacks Drop 95 Percent Since 2015

Published Exploits for Accessing SAP Systems Put Security Teams on Alert

Penetration Testing Versus Red Teaming: Clearing the Confusion

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Podcast: Foundations for a Winning Operational Technology (OT) Security Strategy

Podcast: ‘You Can Never Have Too Much Encryption’

Podcast: Automating Cyber Resilience Best Practices With Dr. Larry Ponemon

Webinar: Guardium Tech Talk: An Integrated Approach to Data Risk Management

Webinar: The Debrief: Using Tools and Methods From the Intelligence Community to Stop Threats to Your Organization

Webinar: Operational Technology Security in the Age of Digital Transformation

Webinar: Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on the Cyber Resilient Organization

Tag: Bash Bug

Latest Shellshock Attack Uses Bashlite to Target Devices Running BusyBox

IBM X-Force Perspective on the Aftermath of Heartbleed and Shellshock

Shellshock: Prevent, Detect and Respond

Shellshock: Where the Bash Bug Could Hit the Hardest