Tuesday, June 07, 2011

Turns Out Those SecurID Tokens Aren't as Secure as Once Thought [Security]

Source: http://gizmodo.com/5809336/turns-out-those-securid-tokens-arent-as-secure-as-once-thought

Turns Out Those SecurID Tokens Aren't as Secure as Once ThoughtMillions of workers in millions of businesses across the US use one of these SecurID tokens to log onto their computers every morning, with the device generating a unique password every time it's used. Nonetheless, a security breach still happened.

EMC Corp. confirmed the incident yesterday, saying that Lockheed Martin Corp. (a weapons manufacturer client of RSA's) was hacked back in March, into using information stolen from RSA Security. While they claim customer and employee data remains uncompromised, they're willing to go the extra yard just to be sure, and replace each and every SecureID device. [WSJ]