Security News

9% of all HTTPS hosts and 6% of all SSH hosts on the web use hardcoded private keys embedded in firmware (Reddit)
2015-11-25 13:50

PwnBin: A script for scraping Pastebin for leaked API keys, SSH credentials (Help Net Security)
2015-11-20 09:00

Pastebins, apart from being a great help for programmers as they offer a place where one can store text online for a set period of time and share it with others, are also loved by hackers who often us...

Advantech Clears Hard-Coded SSH Keys from EKI Switches (Threatpost)
2015-11-06 15:02

Critical industrial switches from Advantech used worldwide for automation contained hard-coded SSH keys that put devices and networks at risk.

Temperature of Hell drops a few degrees Microsoft emits SSH-for-Windows source code (The Register)
2015-10-20 00:35

KeyBox: Web-Based SSH Access and Key Management (x-posted) (Reddit)
2015-10-13 10:28

22/open/tcp//ssh - History, Attacking, and Defending SSH (Reddit)
2015-09-17 18:29

Investigating SSH authorized keys across the infrastructure using MIG (Reddit)
2015-09-13 18:50

My ssh server knows who you are. Seriously. Try: $ ssh whoami.filippo.io (Reddit)
2015-08-04 17:27

Cisco SSH Key Flaw Has Echoes of Earlier Vulnerabilities (Threatpost)
2015-06-26 13:31

When Cisco released a patch for several of its security appliances Thursday that eliminated the presence of hard-coded SSH host and private keys, the advisory had a distinct air of familiarity...

Cisco finds, removes more default SSH keys on its software (Help Net Security)
2015-06-26 08:32

Cisco has pushed out security updates to address two vulnerabilities in its Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Content Security Management Virtual Appl...