Search cyberveille.decio.ch

Found 9 bookmarks

Custom sorting

Censorship Attack against the Tor network

In the last few days, many Tor relay operators - mainly hosting relay nodes on providers like Hetzner - began receiving abuse notices. All the abuses reported many failed SSH login attempts - part of a brute force attack - coming from their Tor relays. Tor relays normally only transport traffic between a guard and an exit node of the Tor network, and per-se should not perform any SSH connections to internet-facing hosts, let alone performing SSH brute force attacks.

#osservatorionessuno #EN #2024 #Tor #network #spoofing #attack #relays #SSH

·osservatorionessuno.org·Nov 4, 2024

Censorship Attack against the Tor network

Gafgyt Malware Variant Exploits GPU Power and Cloud Native Environments

Aqua Nautilus researchers discovered a new variant of Gafgyt targeting machines with weak SSH passwords.

#aquasec #EN #2024 #Gafgyt #Malware #SSH #passwords #botnet #GPU #Power #cloud

·aquasec.com·Aug 15, 2024

Gafgyt Malware Variant Exploits GPU Power and Cloud Native Environments

XZ backdoor behavior inside OpenSSH

In this article, we analyze XZ backdoor behavior inside OpenSSH, after it has achieved RSA-related function hook.

#securelist #EN #2024 #Backdoor #Cyber-espionage #Linux #Malware #Malware-Descriptions #Malware-Technologies #SSH #Targeted-attacks #XZ

·securelist.com·Jun 24, 2024

XZ backdoor behavior inside OpenSSH

Kaspersky analysis of the backdoor in XZ

Kaspersky analysis of the backdoor recently found in XZ, which is used in many popular Linux distributions and in OpenSSH server process.

#securelist #EN #2024 #Backdoor #Cyber-espionage #Linux #Malware #analysis #Malware-Descriptions #Malware-Technologies #SSH #XZ

·securelist.com·Apr 13, 2024

Kaspersky analysis of the backdoor in XZ

Public SSH keys can leak your private infrastructure

This article describes a minor security flaw in the SSH authentication protocol that can lead to unexpected private infrastructure disclosure. It also provides a PoC written in Python.

#rushter #EN #2019 #SSH #keys #github #leak

·rushter.com·Jan 30, 2024

Public SSH keys can leak your private infrastructure

Malicious NPM Packages Exfiltrate Hundreds of Developer SSH Keys via GitHub

Did you download Warbeast2000 or Kodiak2k from npm? If so, your SSH keys might be compromised! These packages steal keys & upload them to GitHub.

#thehackernews #EN #2024 #NPM #Packages #Malicious #SSH #Keys #warbeast2000 #kodiak2k

·thehackernews.com·Jan 28, 2024

Malicious NPM Packages Exfiltrate Hundreds of Developer SSH Keys via GitHub

SSH protects the world’s most sensitive networks. It just got a lot weaker

Novel Terrapin attack uses prefix truncation to downgrade the security of SSH channels.

#arstechnica #EN #2023 #Terrapin #SSH #downgrade #attack

·arstechnica.com·Dec 20, 2023

SSH protects the world’s most sensitive networks. It just got a lot weaker

Terrapin attacks can downgrade security of OpenSSH connections

Academic researchers developed a new attack called Terrapin that manipulates sequence numbers during the handshake process to breaks the SSH channel integrity when certain widely-used encryption modes are used.

#bleepingcomputer #EN #2023 #Cyberattack #Encryption #Man-In-The-Middle-Attack #SSH #Terrapin #Vulnerability

·bleepingcomputer.com·Dec 20, 2023

Terrapin attacks can downgrade security of OpenSSH connections

In a first, cryptographic keys protecting SSH connections stolen in new attack | Ars Technica

An error as small as a single flipped memory bit is all it takes to expose a private key. The vulnerability occurs when there are errors during the signature generation that takes place when a client and server are establishing a connection. It affects only keys using the RSA cryptographic algorithm, which the researchers found in roughly a third of the SSH signatures they examined. That translates to roughly 1 billion signatures out of the 3.2 billion signatures examined. Of the roughly 1 billion RSA signatures, about one in a million exposed the private key of the host.

#arstechnica #EN #2023 #SSH #RSA #cryptographic #algorithm #error #vulnerability

·arstechnica.com·Nov 16, 2023

In a first, cryptographic keys protecting SSH connections stolen in new attack | Ars Technica