For 22 years Shellshock lay dormant. This bug exposed the ability to “take control of hundreds of millions of machines around the world, potentially including Macintosh computers and smartphones that use the Android operating system”*.
From Cedexis viewpoint – our dev-ops team sprang into action. In short order:
- The Shellshock vulnerability in ‘bash’ was disclosed publicly on Sept 24th.
- Ubuntu, our operating system provider, issued a security update for ‘bash’
- All of our systems were patched and updated by 1pm today (Sept 25th).
The inventor of Bash, Brian J. Fox joked in an interview Thursday, that his first reaction to the Shellshock discovery was, “Aha, my plan worked.”