Dark Reading

GitHub's Private RSA SSH Key Mistakenly Exposed in Public Repository

GitHub, a Microsoft subsidiary has replaced its SSH keys after someone inadvertently published its private RSA SSH host key part of the encryption scheme in an open GitHub repository. While some may ...
Bleeping Computer

GitHub.com rotates its exposed private SSH key

GitHub has rotated its private SSH key for GitHub.com after the secret was was accidentally published in a public GitHub repository. The software development and version control service says, the ...
Bleeping Computer

Attackers Start Scans for SSH Keys After Report on Lack of SSH Security Controls

Crooks are mass-scanning online sites for directories containing SSH private keys so they can break into websites with any accidentally exposed credentials. SSH authentication can work via the classic ...
Ars Technica

In a first, cryptographic keys protecting SSH connections stolen in new attack

For the first time, researchers have demonstrated that a large portion of cryptographic keys used to protect data in computer-to-server SSH traffic are vulnerable to complete compromise when naturally ...