Shellshock Worm Exploiting Unpatched QNAP NAS Devices

[Galdorf]

http://threatpost.com/shellshock-worm-exploiting-unpatched-qnap-nas-devices/109870
Now nas devices can pose a security threat on your network if they are not patched.

 

[NYJimbo]

QNAP put out a patch for this three months ago. Just because something is potentially exploitable doesn't mean it will become a major vector for hackers. Despite there being millions of potential targets, this BASH shell attack has really been exaggerated.

 

[Galdorf]

QNAP put out a patch for this three months ago. Just because something is potentially exploitable doesn't mean it will become a major vector for hackers. Despite there being millions of potential targets, this BASH shell attack has really been exaggerated.

I don't think it was exaggerated at all i have had multiple attacks on my web server: http://www.wired.com/2014/09/hackers-already-using-shellshock-bug-create-botnets-ddos-attacks/
The attacks originated from China from what seems to be some type of bot scanning for vulnerabilities and trying to exploit it naturally my security software kicked in and recorded it blocked IP permanently and i decided to just block all of China,Russia,South America and Cuba on my firewall too many attacks.