Security researchers have discovered a “deadly serious” bug called Shellshock which could allow hackers to take control of hundreds of millions of web server and other Internet-connected devices, included mobile phones, routers or medical devices, because its software is developed using Bash scripts.
The statement issued by Trend Micro explains what Shellshock, also called Virus Bash, affects what and how you can protect with the patches that are available. This new danger affects a common program called open source bash, the software used to control the command line in Linux, BSD and Mac OS X.
Graham said that the bug has survived “long lasting”, which means that a huge number of older gadgets will be in danger. The other expert Beardsley advised that everyone using systems using Bash required instantly apply a security patch. The Shellshock bug susceptibility allows a hacker to execute code on the victim computer and take control of it. They have also explained that, due to its generalization, these attacks could “grow” at a very fast pace affecting 51 percent of web servers around the world.
Immediate update your version of Bash Bash or replacement with an alternative shell and check all network devices, available infrastructure. Secondly, do not click on suspicious links and do not log in with any unknown outside WiFi devices.
The Linux and Mac users can apply patches individually, but not something that any individual can easily do, even though there are tutorials on the internet.
In most non-expert users will have no other option but to wait for companies to take action.
Shellshock fix has been released already as patches, anyone who is a victim of such security flaw can navigate to: ShellShock Security Fix , follow the steps and apply required steps wherever needed.
Though, Shellshock bug is not yet fully patched, but it is said that these patches will help users to restrict the hackers to access any information and fix it for a sometime while the developers will release another patch to fully re-secure the data of their users.