By Larry Seltzer for Zero Day | October 27, 2014 -- 16:05 GMT
Reports are emerging that attacks are being performed against SMTP servers using the Shellshock bug. The campaign seeks to create an IRC botnet for DDOS attacks and other purposes.
Shellshock emerged about a month ago and immediately was recognized widely as a serious problem. The bug had been in the Bash shell for 20 years and was widely deployed in a configuration that made it easy to exploit.
http://www.zdnet.com/shellshock-attacks-mail-servers-7000035094/
Shellshock attacks mail servers
Userlevel 7
+3
Userlevel 7
+56
Yeah, saw that on reddit over the weekend:
https://www.reddit.com/r/sysadmin/comments/2kerj2/yesterday_someone_tried_to_shellshock_my_mail/
https://www.reddit.com/r/sysadmin/comments/2kerj2/yesterday_someone_tried_to_shellshock_my_mail/
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.