TechRadar

Security flaw in top SSH client could let hackers recover cryptographic private keys

Multiple versions of the PuTTY SSH client were found to be vulnerable to a high-severity flaw which allowed, in certain scenarios, threat actors to exfiltrate private keys used to generate ...
MyBroadband

PuTTY vulnerability allows attackers to uncover private keys

A vulnerability within PuTTY version 0.68 through 0.80 allows attackers to recover a user’s private key using at least 60 digital signatures that use the Elliptic Curve Digital Signature Algorithm ...
Ars Technica

Any point to using SSH keys rather than passwords in my situation?

I know this has led to flame wars in the past, but I was playing around with using SSH keys to authenticate to my home server this morning, and came to the conclusion that it is better to use ...
Ars Technica

In a first, cryptographic keys protecting SSH connections stolen in new attack

For the first time, researchers have demonstrated that a large portion of cryptographic keys used to protect data in computer-to-server SSH traffic are vulnerable to complete compromise when naturally ...
C4ISRNET

Cybersecurity from the infrastructure up: Don’t ignore SSH keys [Commentary]

In the never-ending fight against cybercrime, is your agency focused on strategy or on tactics? The federal government is under mandate to keep its own and its citizens’ data secure — that’s a given.