[HackerNews] GitHub Revoked Insecure SSH Keys Generated by a Popular git Client

Code hosting platform GitHub has revoked weak SSH authentication keys that were generated via the GitKraken git GUI client due to a vulnerability in a third-party library that increased the likelihood of duplicated SSH keys.
As an added precautionary measure, the Microsoft-owned company also said it’s building safeguards to prevent vulnerable versions of GitKraken from adding newly generated

Source: Read More (The Hacker News)

You might be interested in …

Daily NCSC-FI news followup 2019-07-27

New York Passes Law to Update Data Breach Notification Requirements www.bleepingcomputer.com/news/security/new-york-passes-law-to-update-data-breach-notification-requirements/ New York Governor Andrew M. Cuomo signed the Stop Hacks and Improve Electronic Data Security (SHIELD) Act into law, with the new consumer privacy policy being designed to protect New Yorkers’ private data and strengthen the state’s data breach policies.. The signed legislation, sponsored […]

Read More

[ZDNet] Ransomware: How banks and credit unions can secure their data from attacks

All posts, ZDNet

As ransomware attacks continue to rise, Steve Bomberger, head of SEI IT services, tells ZDNet that it’s crucial banks and credit unions lock down their security measures in order to protect customer’s data and privacy, their own data, and their reputation. Source: Read More (Latest topics for ZDNet in Security)

Read More

[ZDNet] SolarWinds releases security advisory after Microsoft says customers ‘targeted’ through vulnerability

All posts, ZDNet

In an advisory over the weekend, SolarWinds said the vulnerability affects the Serv-U Managed File Transfer and Serv-U Secure FTP. Source: Read More (Latest topics for ZDNet in Security)

Read More