In this case, we don’t believe that Google for Work products such as Gmail, Docs or Drive were widely vulnerable to this problem.  We have no reason to believe that any customer data stored with Google for Work has been at risk.

We worked to fix this issue when it was publicly announced on September 24th. The affected servers were updated in a rapid manner and we carefully monitored any exploitation attempts. We are also engaged with the maintainers of bash and the open-source community to make bash safer. Google takes security very seriously and takes every step to ensure the safety of our users and their data. There are no actions for customers to take at this time.