Try "ssh http://whoami.filippo.io " now think "What if that server automatically grabbed key and logged into work." Today's bug: baaaaaaaad.
-
-
Replying to @sean_a_cassidy
@sean_a_cassidy It makes the impact of the roaming bug worse, since you can automate exploitation on any compromised hosts netwide.1 reply 0 retweets 0 likes -
Replying to @sean_a_cassidy
@sean_a_cassidy Attacker roots your WP blog or side project on DO. Attacker replaces SSH w/ EvilSSH, which steals keypair when you connect.1 reply 0 retweets 0 likes -
Replying to @patio11
@sean_a_cassidy They then use a public-key-to-Github-account reverse lookup and try your private key on any site they can find from Github.1 reply 0 retweets 0 likes
@sean_a_cassidy This all happens in milliseconds without any human intervention required. Someone may get pinged when they get a new shell.
9:30 AM - 14 Jan 2016
1 reply
0 retweets
1 like
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.