ZDNet

OpenSSH security hole unearthed

A popular open-source program for encrypted communications has a serious flaw that could let Internet attackers slip into servers running the software, said its creators and a security firm this week.
Bleeping Computer

Vulnerability Affects All OpenSSH Versions Released in the Past Two Decades

A vulnerability affects all versions of the OpenSSH client released in the past two decades, ever since the application was released in 1999. The security bug received a patch this week, but since the ...
Infosecurity-magazine.com

OpenSSH Flaws Expose Systems to Critical Attacks

Two significant security vulnerabilities in networking utility OpenSSH have been uncovered by security researchers. These flaws, identified as CVE-2025-26465 and CVE-2025-26466, pose risks of ...
Redmond Magazine

SSH Communications Security Sees Microsoft as 'Welcome' Contributor to OpenSSH

The OpenSSH protocol goes way back, but it's recently been making the news. The open source protocol, which adds security around remote server access and file transfers, is perhaps so ubiquitously ...
Bleeping Computer

Terrapin attacks can downgrade security of OpenSSH connections

Academic researchers developed a new attack called Terrapin that manipulates sequence numbers during the handshake process to break the SSH channel integrity when certain widely-used encryption modes ...
Threat Post

OpenSSH Implementations with X11Forwarding Enabled Should Heed Recent Security Update

Last week’s OpenSSH security update warrants a close look for users who re-enable X11Forwarding in OpenSSH. Users who choose to enable X11Forwarding in OpenSSH, or those who use software products that ...
Infosecurity-magazine.com

Forrester Research: Gaps in SSH Security Create an Open Door for Attackers

When you consider the elevated, root privileges SSH provides, you would assume that enterprises make SSH keys more secure than simple usernames and passwords, which provide far fewer privileges to ...