The Olympian Logo

US warns of Bash bug, a bigger threat than Heartbleed | The Olympian

×
  • E-edition
  • Home
    • Customer Service
    • About Us
    • Buy Photos and Pages
    • Contact Us
    • Plus
    • Mobile & Apps
    • Newsletters
    • Newspaper in Education
    • Subscribe
    • Subscriber Services
    • Archives

    • News
    • Business
    • Crime
    • Databases
    • Death Notices
    • Education
    • Local News
    • Military News
    • Obituaries
    • Politics & Government
    • State
    • Traffic
    • Watchdog
    • Weather
    • Opinion
    • Cartoons
    • Editorials
    • Letters to the Editor
    • Opinion Columns
    • Submit a Letter
    • Sports
    • College
    • High School
    • Mariners
    • Preps Stats
    • Seahawks
    • Sounders
    • UW Huskies
    • Politics
    • Living
    • Announcements
    • Food
    • Health & Fitness
    • Home & Garden
    • Travel
    • Entertainment
    • Arts & Culture
    • Comics
    • Puzzles & Games
    • Events Calendar
    • Horoscopes
    • Movies
    • Restaurants
    • Outdoors
    • Fishing

  • Classifieds
  • Jobs
  • Moonlighting
  • Cars
  • Homes
  • Place An Ad
  • Mobile & Apps

National

US warns of Bash bug, a bigger threat than Heartbleed

By Tim Culpan - Bloomberg News

    ORDER REPRINT →

September 25, 2014 06:50 AM

The U.S. government has joined an array of researchers warning of a security flaw that could allow hackers to access devices ranging from computers to video cameras and steal data.

A vulnerability in some Unix-based systems, such as Linux and Mac OS X, “may allow a remote attacker to execute arbitrary code on an affected system,” the U.S. Department of Homeland Security’s Computer Emergency Readiness Team said in a statement on its website. Systems administrators can fix the flaw with a patch, it said.

The vulnerability affects Bourne again shell, or Bash, one of the most widely installed pieces of software on any Linux system, software maker Red Hat Inc. said in a statement on its security blog. The vulnerability, dubbed Shell Shock, could let hackers insert extra code into a computer leading to data theft or the crashing of networks.

“Shell Shock is incredibly easy to exploit,” Jeremiah Grossman, chief executive officer of Santa Clara-based Internet security company WhiteHat Security said in an emailed response to questions. “Compromise of one affected system can automatically spread to another vulnerable system. If this is the case, Shell Shock could easily turn out to be a much bigger problem than Heartbleed.”

SIGN UP

Sign Up and Save

Get six months of free digital access to The Olympian

SUBSCRIBE WITH GOOGLE

#ReadLocal

Carolyn Wu, a Beijing-based spokeswoman for Apple, didn’t immediately return phone calls and an email Thursday. Apple’s Trudy Muller, based in Cupertino, California, didn’t respond to an email after normal business hours.

Heartbleed, a security flaw disclosed in April, affected as many as two-thirds of all Internet servers and could allow hackers to intercept traffic including emails, user names and passwords.

At least 3,000 systems vulnerable to Shell Shock were discovered in a scan conducted by Errata Security, with the possibility of as many as 50-times more to be found, the Atlanta-based team of security researchers wrote in a blog post.

“Today’s bash bug is as big a deal as Heartbleed,” Robert Graham of Errata said in an earlier blog post yesterday, noting that Internet-of-things devices such as video cameras are also vulnerable. “The bug interacts with other software in unexpected ways.”

While Heartbleed was limited to a specific version of OpenSSL, used by companies to secure Internet traffic, the bug in Bash has been around much longer with many older devices that are unlikely to be patched, Graham wrote.

  Comments  

Videos

Colorado man recounts killing mountain lion with his bare hands

More than 20 shots fired in fatal police shooting of California rapper

View More Video

Trending Stories

Weather-related school information for Friday

February 14, 2019 04:07 PM

Despite resident pleas, Lacey policy is to clear only main roads during snowstorms

February 15, 2019 07:00 AM

Bill would prohibit authorities from ticketing homeless people for sleeping on sidewalks

February 14, 2019 10:33 AM

Thurston Co. students are finally heading back to school. What took so long?

February 15, 2019 08:11 AM

The new year is off to a good start for prospective Thurston County home buyers

February 14, 2019 07:00 AM
Local display advertising by PaperG

Read Next

Gunman kills 5 people, wounds 5 police at Illinois business
Video media Created with Sketch.

Business

Gunman kills 5 people, wounds 5 police at Illinois business

By CARRIE ANTLFINGER and AMANDA SEITZ Associated Press

    ORDER REPRINT →

February 15, 2019 04:16 PM

Officials say one person was killed and four police officers wounded after a gunman opened fire in an industrial park in Aurora, Illinois.

KEEP READING

Sign Up and Save

#ReadLocal

Get six months of free digital access to The Olympian

SUBSCRIBE WITH GOOGLE

MORE NATIONAL

The Latest: Trump lauds police response in Aurora shooting

Nation & World

The Latest: Trump lauds police response in Aurora shooting

February 15, 2019 04:22 PM
Town panics at image of man stuck on new $1.2 million artwork. It’s a hoax, cops say

National

Town panics at image of man stuck on new $1.2 million artwork. It’s a hoax, cops say

February 15, 2019 03:27 PM
APNewsBreak: Allred contacted authorities about R Kelly tape

Celebrities

APNewsBreak: Allred contacted authorities about R Kelly tape

February 15, 2019 02:48 PM
The Latest: Judiciary chair seeks hearing on emergency claim

Nation & World

The Latest: Judiciary chair seeks hearing on emergency claim

February 15, 2019 02:02 PM
Driver tried to fake out the law with a carton of Camels. He got burned, police say

National

Driver tried to fake out the law with a carton of Camels. He got burned, police say

February 15, 2019 12:45 PM
Ice flew off truck and shattered mom’s windshield. Then she saw her daughter bleeding

National

Ice flew off truck and shattered mom’s windshield. Then she saw her daughter bleeding

February 15, 2019 12:23 PM
Take Us With You

Real-time updates and all local stories you want right in the palm of your hand.

Icon for mobile apps

The Olympian App

View Newsletters

Subscriptions
  • Start a Subscription
  • Customer Service
  • eEdition
  • Contests-Promotions
  • Vacation Hold
  • Rewards
  • Pay Your Bill
Learn More
  • About Us
  • Contact Us
  • Newsletters
  • News in Education
  • Photo Store
  • Archives
Advertising
  • Information
  • Place a Classified
  • Local Deals
  • Place an Obituary
  • Today's Circulars
  • Special Sections
Copyright
Privacy Policy
Terms of Service


Back to Story