“The U.S. government has joined an array of researchers warning of a security flaw that could allow hackers to access devices ranging from computers to video cameras and steal data,” Tim Culpan reports for Bloomberg. “A vulnerability in some Unix-based systems, such as Linux and Mac OS X, ‘may allow a remote attacker to execute arbitrary code on an affected system,’ the U.S. Department of Homeland Security’s Computer Emergency Readiness Team said in a statement on its website. Systems administrators can fix the flaw with a patch, it said.”
“The vulnerability affects Bourne again shell, or Bash, one of the most widely installed pieces of software on any Linux system, software maker Red Hat Inc. said in a statement on its security blog. The vulnerability, dubbed Shell Shock, could let hackers insert extra code into a computer leading to data theft or the crashing of networks,” Culpan reports. “‘Today’s bash bug is as big a deal as Heartbleed,’ Robert Graham of Errata said in an earlier blog post yesterday, noting that Internet-of-things devices such as video cameras are also vulnerable. ‘The bug interacts with other software in unexpected ways.'”
Culpan reports, “Carolyn Wu, a Beijing-based spokeswoman for Apple, didn’t immediately return phone calls and an e-mail today. Apple’s Trudy Muller, based in Cupertino, California, didn’t respond to an e-mail after normal business hours.”
Read more in the full article here.
MacDailyNews Take: The hits just keep on comin’!