The Latest in IT Security

Command Injection: A Deadly Needle in the Haystack

15
Jul
2016
Command Injection: A Deadly Needle in the Haystack

needleinahaystack_302745-900x535

Looking across the threat landscape at cyber-criminals’ go-to attack vectors, we see SQL injection high on the list. But there’s another injection method that also poses a serious threat: command injection.

In late September 2014, a more than 20-year-old vulnerability in the GNU Bash shell, which was widely used on Linux, Solaris and OS X systems, sparked the mobilization of attacks known as Shellshock. This first vulnerability quickly gave way to the disclosure of several additional vulnerabilities affecting the UNIX shell.

Read More

Leave a reply


Categories

SATURDAY, SEPTEMBER 23, 2017

Featured

Archives

Latest Comments

Social Networks