CONTRIBUTOR

ARTICLE

United States: FFIEC Warns Of Security Vulnerabilities In Bourne-Again Shell System Software

13 October 2014

by Shearman & Sterling LLP

Shearman & Sterling LLP

Your LinkedIn Connections
with the authors

To print this article, all you need is to be registered or login on Mondaq.com.

On September 26, 2014, the Federal Financial Institutions Examination Council ("FFIEC") issued an alert notifying financial institutions of a material security vulnerability in Bourne-again shell system software that could allow attackers to gain access and control of operating systems. The FFIEC alert outlines the risks associated with the vulnerability (known as "Shellshock") and advises financial institutions to take appropriate risk mitigation steps. Examples of appropriate risk mitigations steps include: (i) identifying vulnerable internal systems and services; (ii) following appropriate patch management practices; and (iii) ensuring that third-party vendors take appropriate risk mitigation steps and monitoring the status of the vendors' efforts.

The full text of the FFIEC alert is available at: http://www.ffiec.gov/press/PDF/FFIEC_JointStatement_BASH_Shellshock_Vulnerability.pdf.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.

AUTHOR(S)

Shearman & Sterling LLP

Shearman & Sterling LLP

ARTICLE TAGS

United States Finance and Banking Financial Services

POPULAR ARTICLES ON: Finance and Banking from United States

RELATED CONTENT

FREE News Alerts

Sign Up for our free News Alerts - All the latest articles on your chosen topics condensed into a free bi-weekly email.

Article Tags

United States Finance and Banking Financial Services

Related Articles

Colorado's DIDMCA Opt-Out Challenged By Trade Associations In Federal Court McGlinchey Stafford

Investment Management Legal And Regulatory Update - April 2024 Godfrey & Kahn S.C.

Federal PAC Treasurers Are A Must To Manage Election Fundraising Steptoe LLP

Not Off The Hook: The SEC Addresses Its Position On Exculpation And Indemnification For Private Fund Advisers Proskauer Rose LLP

Embracing Sovereign Sukuk: Demystifying Sharia-Compliant Sovereign Finance Alvarez & Marsal

Mondaq Webinars

APR24

Mastering Mediation & Arbitration: Strategies for Navigating the Rising Tide of Privacy Class Action Lawsuits

APR25

Canadian Employment Law: Updates and Emerging Trends in Employment

McCarthy Tétrault LLP

Comparative Guides

Anti-Corruption & Bribery

Artificial Intelligence

Aviation Finance

Aviation Regulation

Banking Regulation

Mondaq Advice Centres

United States

Advertising and Marketing

United States

Telemarketing

United States

COVID-19

Global

Trademarks in SAARC Countries

United States

International Trade Law & Customs

Curated Content

Subscription Credit Facilities: Concentration Limits
Mayer Brown

Can, And Should, The U.S. Government Develop A CBDC System?
Braumiller Law Group, PLLC

ImpactDAOs: Shaping The Future Of Regenerative Organizations
Braumiller Law Group, PLLC

Executive Order On Digital Assets A Welcome Start To Responsible Regulation
Braumiller Law Group, PLLC

Evolving Legal Issues For NFTs
Braumiller Law Group, PLLC

Upcoming Events

MAY05

2024 MBA Legal Issues And Regulatory Compliance Conference

Goodwin Procter LLP

Conference San Diego United States

MAY15

IMN's Real Estate Mezzanine Financing & High-Yield Debt Forum

Kramer Levin Naftalis & Frankel LLP

Forum New York United States

More filters

Mondaq Social Media

© Mondaq® Ltd 1994 - 2024. All Rights Reserved.

Please to Mondaq or for unlimited free access and a complimentary news alert

|

|

|

|