Shellshock and you
Since the disclosure four days ago, the Internet has been awash with news regarding the recent ‘Shellshock’ exploit which affects large numbers of Linux based systems.
Wirehive clients with our Managed SLA service are already patched against this vulnerability. That said there is a very real impact which a number of our clients are experiencing due to the significant increase in automated scanning from bots, attempting to find and exploit instances of this vulnerability in the wild. Think of these bots much like a hungry bear* sniffing around for a meal.
It’s widely reported that the average attack rate across the Internet as a whole has doubled over the last four days with around 70% of that increase coming from targeted scanners attempting to verify the existence of the vulnerability so an attack can be carried out.
Issues such as this one highlight the extremely useful functionality CDNs offer around Bot protection and WAF (Web Application Firewalls). At Wirehive we partner with industry leaders CloudFlare and Incapsula to provide options for our clients to take advantage of this type of technology.
Both services have a range of options which stop this type of scanning from getting to your server in the first place and eliminate the increased load you may be experiencing during this period. It’s also worth noting that utilising services of this nature almost entirely removes the risk of being compromised, even if your server has the vulnerability.
With so many major security issues surfacing over the last few months, and the increasing size and frequency of other types of malicious attacks on the Internet as a whole, now’s the time to start evaluating this type of service for your business.
If you have any concerns regarding this vulnerability please to get in touch with us and we’ll be happy to provide some free consultancy on reviewing your security practises and implementing the services mentioned above.
Two great articles on this topic which are worth following from the vendors mentioned above:
*No bears were harmed in the making of this blog post. Samuel the Security Bear is alive and well.