Call us: 800.288.7387
salesteam@nyi.net
  • Get a Quote
  • Login
NYINYINYINYI
  • Solutions
    • Colocation & Data Centers
    • Network & Interconnection
    • Hybrid Cloud
    • Bare Metal
    • Professional Services
    • Managed Services
  • Resources
    • News
    • Events
    • Blog
  • About NYI
    • The NYI Difference
    • Partner Program
    • Careers
    • Community
    • Compliance
  • Contact
Next Previous

FTW Protects Customer Web Sites against ShellShock – Part 2

1 October, 2014

Post by: Mark Staudinger
This blog is Part 2 of a two-part series

Previously, we took a look at Shellshock and how it has wreaked havoc on thousands of computers over the past few weeks, making it easy for hackers to gain control over websites and computers systems.  NYI designed its Fault Tolerant Web (FTW) service to protect against online threats, provide DDoS mitigation and protection and block web exploits before they reach your server.

The good news is that FTW, using the security policies in place when ShellShock was announced, was actively blocking ShellShock exploit attempts.  Since then, we have added additional security policies that are specific to ShellShock, to better protect against any variations on the type of attack that we’ve already seen reach our edge nodes.

As we await the official patch for Bash, and as the scope and number of these ShellShock exploits inevitably rise, our FTW-enabled customers can rest easier, knowing that their servers are protected externally.

9/29 tally:  367339 blocked web requests.  Of those, fewer than 38000 were exploit attempts, and of those, only 475 were ShellShock exploit attempts – slightly more than 1%.  These numbers will likely rise in the coming days and weeks.

———————-
LINKS:

CVE-2014-6721 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6271
CVE-2014-7169 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-7169

Bash patch still not finalized: http://mashable.com/2014/09/29/shellshock-additional-vulnerabilities/
———————-

Security is a primary component of FTW

Shellshock poses a significant threat because Bash is so ubiquitous on Unix servers, and the vulnerability is fast and easy to exploit for non-programmers.  Also, the Bash patches are still a work in progress, and it’s not clear that all of the vulnerabilities have been fixed.  So, while individual servers can and should be patched, additional protection is useful to cover those vulnerabilities that are not patched.

Summary: We knew that FTW’s existing security policies blocked most of the Shellshock exploits attempts.

NYI expanded security policies to protect against known Shellshock attacks and likely derivations.

FTW includes ShellShock protection as part of the “basic security” feature, provided at all service levels.

Recently on the NYI Blog

  • Megaport and NYI Mark 10 Years of Partnership with Expansion to Chicago
  • NYI Newsletter: Q1 2025
  • NYI Newsletter: Q4 2024
  • NYI Newsletter: Q3 2024
  • DataBank and NYI Partner to Offer Enhanced Connectivity Ecosystem in NYC

NYI
NYI is a trusted infrastructure partner to small and medium-sized enterprise clients across a range of industries. We drive infrastructure optimization through flexible integrated hybrid IT solutions and strategic partnerships that result in cost and performance efficiencies. Our experts offer insights and end-to-end support so that your teams can be freed to focus on innovation and growth.

Contact Us

  • New York City
    60 Hudson Street
    New York, New York 10013
  • Chicago
    800 Jorie Blvd.
    Oak Brook, IL 60523
  • NYI Headquarters
    T: 212.269.1999     
    T:
    800.288.7387
  • Terms and Conditions
  • Service Level Agreement
  • Privacy Policy
New York Internet
Copyright 2024. All rights reserved worldwide.
  • Solutions
    • Colocation & Data Centers
    • Network & Interconnection
    • Hybrid Cloud
    • Bare Metal
    • Professional Services
    • Managed Services
  • Resources
    • News
    • Events
    • Blog
  • About NYI
    • The NYI Difference
    • Partner Program
    • Careers
    • Community
    • Compliance
  • Contact
NYI