Every version of the PuTTY tools from 0.68 to 0.80 inclusive has a critical... - Infosec

nixCraft, 1 month ago

Every version of the PuTTY tools from 0.68 to 0.80 inclusive has a critical vulnerability in the code that generates signatures from ECDSA private keys. Tthe effect of the vulnerability is to compromise the private key https://www.chiark.greenend.org.uk/~sgtatham/putty/wishlist/vuln-p521-bias.html #infosec #security #ssh #opensource #linux #unix #windows

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

+ tallship, robcee, nivrig, adwright +9 more

Image

Image alternative text

Federation

Status:

On | Off

Instances:

/m/infosec

Threads (1002)

Microblog (2986)

All Content

People

Magazines

Collections

Thread

nixCraft

@nixCraft@mastodon.social

Added: 1 month ago
Online: -
Boosts: 13

Magazine

Infosec

@infosec@kbin.social

This magazine is dedicated to discussions on cybersecurity, network security, and information security.

Whether you are an IT professional, a cybersecurity enthusiast, or simply concerned about online privacy and security, this is the place for you.

Here you can share your knowledge, ask for advice, and discuss the latest news and trends in the world of cybersecurity. From encryption and malware to risk management and digital forensics, this category covers a wide range of topics related to information security.

Join the conversation and let's work together to keep our online world safe and secure.

Created: 1 year ago
Owner: ernest
Subscribers: 3674
Online: -

Moderators

ernest

Active people

HOW DO I TURN OFF guessing......

2 days ago to ai

Russian Disinfo Campaign Blames Ukraine for Shooting of Slovakia’s Prime Minister...

12 hours ago to Cybersecurity

Having an AI ("Windows Recall" is enabled by default) that tracks every move you do on your computer and of course has no filter (Microsoft's own FAQ clearly states it will remember every password you type) is idiotic. But Tech bros are frothing at the mouth for anything AI so here we are....

2 days ago to microsoft

I'll be making a new account on this server solely for my bot testing for my API tinkering so I don't accidentally spam my account feed. Because I am planning to do some live tinkering to improve my Twitch stream alerter for Mastodon as Snyk.io is screaming at me for some security fixes, and I need to update the libraries used...

1 day ago to Twitch

Related threads

University of Michigan employee, student data stolen in cyberattack

6 months ago to sysadmin

David Attenborough narrates a cyber attack

7 months ago to InfoSecMemes

Pretender: Your MitM sidekick for relaying attacks

11 months ago to toolsec

Add comment