Bleeping Computer

Citrix warns admins to manually mitigate PuTTY SSH client bug

Citrix notified customers this week to manually mitigate a PuTTY SSH client vulnerability that could allow attackers to steal a XenCenter admin's private SSH key. XenCenter helps manage Citrix ...
TechRadar

Security flaw in top SSH client could let hackers recover cryptographic private keys

Multiple versions of the PuTTY SSH client were found to be vulnerable to a high-severity flaw which allowed, in certain scenarios, threat actors to exfiltrate private keys used to generate ...
Ars Technica

Any point to using SSH keys rather than passwords in my situation?

I know this has led to flame wars in the past, but I was playing around with using SSH keys to authenticate to my home server this morning, and came to the conclusion that it is better to use ...
MyBroadband

PuTTY vulnerability allows attackers to uncover private keys

A vulnerability within PuTTY version 0.68 through 0.80 allows attackers to recover a user’s private key using at least 60 digital signatures that use the Elliptic Curve Digital Signature Algorithm ...
Ars Technica

In a first, cryptographic keys protecting SSH connections stolen in new attack

For the first time, researchers have demonstrated that a large portion of cryptographic keys used to protect data in computer-to-server SSH traffic are vulnerable to complete compromise when naturally ...