Ars Technica

Making SSH Private keys more secure

which talks about beefing up the security of the passphrase of your SSH private key. The article (as I understand it) discusses that by default, your SSH private key passphrase is essentially just a ...
Bleeping Computer

PuTTY SSH client flaw allows recovery of cryptographic private keys

A vulnerability tracked as CVE-2024-31497 in PuTTY 0.68 through 0.80 could potentially allow attackers with access to 60 cryptographic signatures to recover the private key used for their generation.
InfoWorld

Millions of embedded devices use the same hard-coded SSH and TLS private keys

Keys hard-coded in thousands of routers, modems, IP cameras, VoIP phones and other devices can be used to launch man-in-the-middle attacks Thousands of routers, modems, IP cameras, VoIP phones and ...
Ars Technica

In a first, cryptographic keys protecting SSH connections stolen in new attack

For the first time, researchers have demonstrated that a large portion of cryptographic keys used to protect data in computer-to-server SSH traffic are vulnerable to complete compromise when naturally ...