cybersecurity

3249 readers

4 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

founded 1 year ago

MODERATORS

shellsharks@infosec.pub

tweedge@infosec.pub

"In a first, cryptographic keys protecting SSH connections stolen in new attack" (arstechnica.com)

submitted 1 year ago by indepndnt@lemmy.world to c/cybersecurity@infosec.pub

3 comments fedilink hide all child comments

I read most of this article trying to determine if I was impacted, so to save you the trouble:

The researchers traced the keys they compromised to devices that used custom, closed-source SSH implementations that didn’t implement the countermeasures found in OpenSSH and other widely used open source code libraries.

you are viewing a single comment's thread
view the rest of the comments

[–] BestBouclettes@jlai.lu 1 points 1 year ago

I migrated most of my keys to ed25519 a while ago, I probably should keep going