Security giant RSA said a sophisticated attack has possiblycompromised the two-factor authentication system used by tens ofmillions of end users of the company's clients, which includeslarge banks and other corporations and credit unions.
|RSA, a division of EMC, placed the attack in the AdvancedPersistent Threat category, which typically means the attackers hadundetected access to sensitive data for some period of time.
|RSA's executive chairman, Art Coviello, said the company hasfound that information “specifically related” to its widely usedSecurID two-factor authentication products was involved.
|“While at this time we are confident that the informationextracted does not enable a successful direct attack on any of ourRSA SecurID customers, this information could potentially be usedto reduce the effectiveness of a current two-factor authenticationimplementation as part of a broader attack,” Coviello said in anopen letter posted on the company's website at www.rsa.com.
|He called the attack extremely sophisticated and said thecompany is working with authorities and contacting clients.
|“We are committed to applying all necessary resources to giveour SecurID customers the tools, processes and support they requireto strengthen the security of their IT systems in the face of thisincident. Our full support will include a range of RSA and EMCinternal resources as well as close engagement with our partnerecosystems and our customers' relevant partners,” Coviellosaid.
Complete your profile to continue reading and get FREE access to CUTimes.com, part of your ALM digital membership.
Your access to unlimited CUTimes.com content isn’t changing.
Once you are an ALM digital member, you’ll receive:
- Critical CUTimes.com information including comprehensive product and service provider listings via the Marketplace Directory, CU Careers, resources from industry leaders, webcasts, and breaking news, analysis and more with our informative Newsletters.
- Exclusive discounts on ALM and CU Times events.
- Access to other award-winning ALM websites including Law.com and GlobeSt.com.
Already have an account? Sign In
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
