all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Passive SSH server private key compromise is real ... for some vulnerable gear

Add to bookmarks
Nov. 14, 2023, 2:38 a.m. | Jessica Lyons Hardcastle

The Register - Security www.theregister.com

OpenSSL, LibreSSL, OpenSSH users, don't worry – you can sit this one out

An academic study has shown how it's possible for someone to snoop on certain devices' SSH connections and, with a bit of luck, impersonate that equipment after silently figuring out the hosts' private RSA keys.…

academic compromise connections devices don equipment gear key openssh openssl passive private private key real rsa server snoop ssh study vulnerable

Visit resource

More from www.theregister.com / The Register - Security

Locking down the edge 34 minutes ago | www.theregister.com
attack attack surface devices distributed +14
A year on, CISA realizes debunked vuln actually a dud and removes it from must-patch … an hour ago | www.theregister.com
catalog check cisa cve +17
Shielding the data that drives AI 6 hours ago | www.theregister.com
ai-powered applications critical critical data +13
Atlassian security advisory reveals four fresh critical flaws – in mail with dead links 9 hours ago | www.theregister.com
advisory all in atlassian bitbucket +15
Microsoft issues deadline for end of Windows 10 support – it's pay to play for … 10 hours ago | www.theregister.com
customers end microsoft october +10
Cisco intros AI to find firewall flaws, warns this sort of thing can't be free 12 hours ago | www.theregister.com
binary change cisco end +11
Fancy Bear goes phishing in US, European high-value networks 16 hours ago | www.theregister.com
aerospace bear bugs campaigns +22
CISA details twin attacks on federal servers via unpatched ColdFusion flaw 23 hours ago | www.theregister.com
adobe adobe coldfusion agency attackers +17
DSPM deep dive: debunking data security myths 1 day ago | www.theregister.com
alphabet charge concepts cybersecurity +16

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Security Specialist

@ Protect Democracy | Remote, US
View on infosec-jobs.com

Sr Staff Software Engineer (L7- Network Security)

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

Cyber Threat Analyst, Senior

@ ManTech | 221BQ - Cstmr Site,Springfield,VA
View on infosec-jobs.com

Security Architect

@ Netcompany | Birmingham, United Kingdom
View on infosec-jobs.com

Sr. Security Architect

@ Datavant | Remote, United States
View on infosec-jobs.com

Cybersecurity Services Sales Executive

@ Rockwell Automation | United States of America Milwaukee (South 2nd Street)
View on infosec-jobs.com
View more jobs