[dayglored]

Ruh-roh.

[dayglored]

Windows 10 Linux Bash attack ... PING!

You can find all the Windows Ping list threads with FR search: just search on keyword "windowspinglist".

[proxy_user]

Do you need physical access to the computer to execute this attack? Do you need to be sitting at the keyboard typing in the evil shell commands?

[ThunderSleeps]

...makes it possible for malware to use the Linux shell to bypass security software.

While administrator access is needed to execute a Bashware attack...

I'm not a big Windows guy - I only use it when I have to at work and the systems are administered by the IT staff... But it seems to me once an attacker has admin rights, pretty much the entire machine is his/her playground. I'm not seeing anything startling about being able to screw up a machine via this or that once you're an admin on it.

[Patriot777]

Oh, well...
I went back to paying bills by post and purchasing with cash quite a while back, knowing that the private computer age would eventually come crashing down due to all the ‘wares’ out there. Just too bloody risky.

[Nateman]

If you have physical access then you can get into Linux.

[Bob434]

ok I’m a big dummy when it comes to this stuff- My question is- this isn’t a linux virus that causes this is it? It’s a windows virus that exploits the linux code somehow?

My second question then becomes- if it’s a windows virus that exploits linux- then when using linux only, and browsing to a site with the virus- linux users are still safe, no? Windows woudl have to be running at same time, right?

[catnipman]

“While administrator access is needed to execute a Bashware attack ...”

doesn’t sound like a promising attack vector if you have to have administrator access.

once you have administrator access then the rest of any attack is mere details anyway.

[ShadowAce]

While administrator access is needed to execute a Bashware attack, this is fairly easily obtained...

I think I see the real problem here.