all InfoSec news
TERRAPIN and SSH Prefix Truncation Attack
Dec. 31, 2023, 11:33 p.m. | Bob Gezelte
The RISKS Digest catless.ncl.ac.uk
ArsTechnica reported that Terrapin, a man-in-the-middle attack against the
widely used SSH protocol, is feasible in combination with widely used
"ChaCha20-Poly1305" or "CBC with Encrypt-then-MAC" encryption modes.
https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/
attack cbc chacha20 encrypt encryption mac man-in-the-middle protocol ssh ssh protocol terrapin
More from catless.ncl.ac.uk / The RISKS Digest
EFI IPv6/PXE Security Flaw
4 months, 1 week ago |
catless.ncl.ac.uk
Imaging privacy threats from an ambient light sensor
4 months, 1 week ago |
catless.ncl.ac.uk
Re: CLEAR wants to scan your face at airports. Privacy experts are worried.
4 months, 1 week ago |
catless.ncl.ac.uk
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC