Security News

More than 900 embedded devices share hard-coded certs, SSH host keys (Help Net Security)
2015-11-26 09:20

Embedded devices of some 50 manufacturers has been found sharing the same hard-coded X.509 certificates (for HTTPS) and SSH host keys, a fact that can be exploited by a remote, unauthenticated attacke...

Raspberry Pi Predictable SSH host keys (Reddit)
2015-11-25 15:35

9% of all HTTPS hosts and 6% of all SSH hosts on the web use hardcoded private keys embedded in firmware (Reddit)
2015-11-25 13:50

PwnBin: A script for scraping Pastebin for leaked API keys, SSH credentials (Help Net Security)
2015-11-20 09:00

Pastebins, apart from being a great help for programmers as they offer a place where one can store text online for a set period of time and share it with others, are also loved by hackers who often us...

Advantech Clears Hard-Coded SSH Keys from EKI Switches (Threatpost)
2015-11-06 15:02

Critical industrial switches from Advantech used worldwide for automation contained hard-coded SSH keys that put devices and networks at risk.

Temperature of Hell drops a few degrees Microsoft emits SSH-for-Windows source code (The Register)
2015-10-20 00:35

KeyBox: Web-Based SSH Access and Key Management (x-posted) (Reddit)
2015-10-13 10:28

22/open/tcp//ssh - History, Attacking, and Defending SSH (Reddit)
2015-09-17 18:29

Investigating SSH authorized keys across the infrastructure using MIG (Reddit)
2015-09-13 18:50

My ssh server knows who you are. Seriously. Try: $ ssh whoami.filippo.io (Reddit)
2015-08-04 17:27