Current Internet Threat Level


Focused attacks. Specific vulnerabilities and weaknesses are the target of Internet attacks and require immediate defensive action.

Current AlertCon


Focused attacks. Specific vulnerabilities and weaknesses are the target of Internet attacks and require immediate defensive action.

Threats

After a meeting to re-evaluate the bash ShellShock vulnerability (CVE-2014-6271, CVE-2014-7169), it was decided to raise the IBM Threat Level to AlertCon 3 based on the potential number of systems affected, the ease of exploitation, and the number of attempts to exploit MSS customers. IBM IPS customers have a level of pre-existing coverage with the shell_command_injection signature. If your are a MSS customer running an IBM IPS, this signature should be enabled. You can log into the VSOC Portal and check your policy to verify.

Recommendations

Customers are urged to monitor for their distributions' advisories and upgrade bash as soon as possible. IBM will continue to monitor the situation and update our users as more information becomes available.

Threat Forecast

We foresee remaining at Threat Level AlertCon 3 for the time being.


X-Force Threat Analysis Service