In a first, cryptographic keys protecting SSH connections stolen in new attack
The Insider News
1
Posts
1
Posters
0
Views
1
Watching
-
An error as small as a single flipped memory bit is all it takes to expose a private key.
Nothing to PANIC! PANIC! TIME TO PANIC!
"The vulnerability occurs when there are errors during the signature generation that takes place when a client and server are establishing a connection. It affects only keys using the RSA cryptographic algorithm, which the researchers found in roughly a third of the SSH signatures they examined. That translates to roughly 1 billion signatures out of the 3.2 billion signatures examined. Of the roughly 1 billion RSA signatures, about one in a million exposed the private key of the host." <- You don't want to be that one in a million kinda guy