A botnet runs on Linux and Linux variant servers, named wopbot that uses the Bash Shellshock bug to auto-infect others. The wopbot botnet is active and scanning the internet for vulnerable systems, including network ranges at the United States Department of Defense. The US DoD network in question is the 215.0.0.0/8 range, with approximately 16.7 million addresses.
Apache web servers around the world could be at risk if their common gateway interface (CGI) scripts invoke Bash. Every operating system below, with the exception of the Windows OS, needs to be evaluated for the Shellshock bug.
Wopbot is a command and control malware botnet. It zombifies targets and allows them to be used in Distributed Denial of Service (DDoS) attacks.