Checkpoint has discovered a new attack method subbed “Bashware” that can allow hackers to bypass common security solutions with any known malware.
The Bashware technique takes advantage of a new Windows 10 supported feature “Subsystem for Linux (WSL).”
The new WSL feature allows Windows users to use popular bash terminal and run native Linux OS executables straight from the Windows OS.
Checkpoint further describes the Bashware threat:
“Existing security solutions are still not adapted to monitor processes of Linux executables running on Windows OS, a hybrid concept which allows a combination of Linux and Windows systems to run at the same time.”
Bashware could potentially affect any of the nearly 400M Windows 10 PCs in the future.