Today we are releasing new Deep Discovery rules to detect attacks attempting to exploit the recently exposed Shellshock (CVE-2014-6271 and CVE-2014-7169) vulnerability. Shellshock Risks This vulnerability represents an important and widespread risk to organizations of all sizes. It is found in Bash, the dominant shell for Unix and Linux, and can also be found in…

Here you will find the latest blogs from Trend Micro’s experts along with a comprehensive look at the latest vulnerability the “Bash Bug.” We encourage you to scroll through the various blogs, provide comments and enjoy the in-depth knowledge that Trend Micro has to offer. Please add your thoughts in the comments below and follow…

The Bug This week brings us another wide spread, critical vulnerability that required immediate attention. Perhaps even larger in scope than Heartbleed, Shellshock affects a very common open source program called “bash.” Bash is a command shell commonly deployed on Linux, BSD, and Mac OS X. CVE–2014–7169 provides the details. The tl:dr takeaway is this bug is widespread, has…

I love this classic Billy Joel song.  It always pops into my head whenever I am flying into and out of the bustling city.  Last week the tune again weaved its way into my subconscious as I had the privilege of speaking to nearly 500 cyber security professionals at the Cyber Security Summit in NYC. …

When I heard that hackers ripped off nude photos of celebrities by hacking into their iCloud accounts then posted them on the dodgy image board AnonIB, I can’t say that I was surprised. Even though storing data this sensitive in the cloud seems like a risky practice, I am sympathetic with the sense of embarrassment these…