The New Heartbleed? ‘Shellshock’ Threatens 500M Computers

The critical vulnerability, which had been dormant in the OpenSSL software for a long time, made headlines with its severity and threatening potential, as security experts and popular sites scrambled to secure their servers and assure their users that their information was A-OK. Now another exploit, going by the name Shellshock, looks to pose a similar threat to machines worldwide. The impact looks to be even greater than Heartbleed’s: Where Heartbleed only affected some 500,000 machines in total, conservative estimates place Shellshock’s influence at over 500 million compromised machines. The main problem is the location of the vulnerability – a small piece of software called Bash, which stands for Bourne-Again SHell.

via Business News http://ift.tt/1qBTDwe