all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Passive SSH server private key compromise is real ... for some vulnerable gear

Add to bookmarks
Nov. 14, 2023, 2:38 a.m. | Jessica Lyons Hardcastle

The Register - Security www.theregister.com

OpenSSL, LibreSSL, OpenSSH users, don't worry – you can sit this one out

An academic study has shown how it's possible for someone to snoop on certain devices' SSH connections and, with a bit of luck, impersonate that equipment after silently figuring out the hosts' private RSA keys.…

academic compromise connections devices don equipment gear key openssh openssl passive private private key real rsa server snoop ssh study vulnerable

Visit resource

More from www.theregister.com / The Register - Security

Twitch ditches Safety Advisory Council, relaunches with vetted 'ambassadors' 1 day, 6 hours ago | www.theregister.com
advisory army council dismantled +7
Snowflake denies miscreants melted its security to steal data from top customers 1 day, 8 hours ago | www.theregister.com
analysts claims cloud cloud storage +15
US senator claims UnitedHealth's CEO, board appointed 'unqualified' CISO 1 day, 8 hours ago | www.theregister.com
appointed board cases catastrophe +21
Cyber cops plead for info on elusive Emotet mastermind 1 day, 10 hours ago | www.theregister.com
arrests big calling cops +10
New Nork-ish cyberespionage outfit uncovered after three years 1 day, 14 hours ago | www.theregister.com
cyber cybercrime cyberespionage data +8
Google to push ahead with Chrome's ad-blocker extension overhaul in earnest 1 day, 18 hours ago | www.theregister.com
access beta blocker browser +14
FlyingYeti phishing crew grounded after abominable Ukraine attacks 1 day, 23 hours ago | www.theregister.com
attack attacks claims cloudflare +13
Mystery miscreant remotely bricked 600,000 SOHO routers with malicious firmware update 2 days, 5 hours ago | www.theregister.com
assault bricked devices disabling +14
OpenAI is very smug after thwarting five ineffective AI covert influence ops 2 days, 6 hours ago | www.theregister.com
ai services covert elections generative +9

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com