PC World

Users with weak SSH keys had access to GitHub repositories for popular projects

A number of high-profile source-code repositories hosted on GitHub could have been modified using weak SSH authentication keys, a security researcher has warned. The potentially vulnerable ...
Bleeping Computer

GitHub revokes duplicate SSH auth keys linked to library bug

GitHub has revoked weak SSH authentication keys generated using a library that incorrectly created duplicate RSA keypairs. GitHub allows you to authenticate to their service without a user name and ...
InfoQ

GitHub Revoked Compromised and Unsecure SSH Keys

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Bleeping Computer

GitHub now supports security keys when using Git over SSH

GitHub has added support for securing SSH Git operations using FIDO2 security keys for added protection from account takeover attempts. Researchers at North Carolina State University (NCSU) found [PDF ...
Techno-Science.net

3 Ways to Generate SSH Keys on Windows

If you do your work via cloud computing, accessing remote servers that are not on your current or home network, you are probably already familiar with SSH or Secure Shell Keys. Because SSH keys are ...
Hackaday

GitHub’s Move Away From Passwords: A Sign Of Things To Come?

If you already have a SSH keys installed on your system, make sure to copy the public key into your GitHub profile. After this you can either clone your repositories anew with more SSH flavor, or ...