Security News > 2024 > January > Nearly 11 million SSH servers vulnerable to new Terrapin attacks

Nearly 11 million SSH servers vulnerable to new Terrapin attacks
2024-01-03 15:06

Almost 11 million internet-exposed SSH servers are vulnerable to the Terrapin attack that threatens the integrity of some SSH connections.

The Terrapin attack targets the SSH protocol, affecting both clients and servers, and was developed by academic researchers from Ruhr University Bochum in Germany.

A recent report by security threat monitoring platform Shadowserver warns that there are nearly 11 million SSH servers on the public web - identified by unique IP addresses, that are vulnerable to Terrapin attacks.

The significance of Shadowserver's report lies in highlighting that Terrapin attacks can have a widespread impact.

While not all 11 million instances are at immediate risk of being attacked, it shows that adversaries have a large pool to choose from.

Terrapin attacks can downgrade security of OpenSSH connections.


News URL

https://www.bleepingcomputer.com/news/security/nearly-11-million-ssh-servers-vulnerable-to-new-terrapin-attacks/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
SSH 9 2 8 7 2 19