Malware known as “Mayhem” that targets Unix and Linux systems has been updated to exploit Shellshock flaws. Malware is being sold in underground forums for anyone who wants to build their own Mayhem botnet. The original version of the Mayhem malware used a PHP script to compromise machines, they said. Security experts have warned that more than half a billion Web servers run Linux-based Apache and are at risk from Shellshock attacks, unless they’ve been patched. The greatest number of bots were located in the United States, followed by Russia, Germany and Canada.”]
Source: https://www.cuinfosecurity.com/mayhem-malware-exploits-shellshock-a-7423