Shellshock Spreads to Email
A report at the SANS website has raised alarms that attackers have learned to exploit the dangerous Shellshock bug, which makes any system running an unpatched version of the Bash shell vulnerable to attack, through SMTP email services. The InfoSec Handlers Diary Blog states, “I’ve received serveral reports of what appears to be shellshock exploit attempts via SMTP. The sources so far have all been webhosting providers, so I’m assuming these are compromised systems.” The post shows an infected header.
According to the report, the payload is “… an IRC bot with simple DDoS commands and the ability to fetch and execute further code.”
Yet one more reason to PATCH YOUR SYSTEMS …
10/28/2014