LinkBack URL
About LinkBackshttp://www.theregister.co.uk/2011/03..._securid_data/
http://securosis.com/blog/rsa-breach...ureid-affected
As one colleague so elegantly summarised: "Oh dear"
http://www.theregister.co.uk/2011/03..._securid_data/
http://securosis.com/blog/rsa-breach...ureid-affected
As one colleague so elegantly summarised: "Oh dear"
CAT-THE-FIFTH (18-03-2011),Phage (18-03-2011)
I'll go further.
Egads !
Society's to blame,
Or possibly Atari.
I thought you meant the key-exchange mechanism for a moment there, phew.
Originally Posted by Agent
I was about to say if P=NP had been solved someone getting their millenium problem money, this would be the geek version of "remembering where you were when JFK was shot".
throw new ArgumentException (String, String, Exception)
Still... not good.
Indeed!
Ooops, I can see the security meetings coming think and fast to asses the risks involved..
Not good indeed.
We have around 600 users using RSA and SecureID. Crap.
My Blog => http://adriank.org
About 6,000 here, but tbh its just one factor in the chain, they still need the pin, they still need the password, the chars from memorable phrase, then the internal area is still secure so they need a valid logon for one of the boxes they are authorised to talk to (or an exploit).
That said I'd still expect a whole bunch of people to have their access disabled!
throw new ArgumentException (String, String, Exception)
man, I thought this was the public-key encryption then! nearly had a heart attack! Probably an inside job that.
□ΞVΞ□
oh, not the artist formerly known as Royal Sun Alliance then.
Vodka
Necro-ing my own thread.
Awesome.
Update:
RSA finally comes clean: SecurID is compromised
Oops....
Sooo...... Who was it? Israil or China?
throw new ArgumentException (String, String, Exception)
Noooo! It was MI6 they replaced it with a Cupcake.
(\__/) All I wanted in the end was world domination and a whole lot of money to spend. - NMA
(='.*=)
(")_(*)
LulzSec anyone?
It didn't fall off, it merely became insufficient at it's purpose and got a bit droopy...
Police have released an e-fit of the suspect
Disturbedguy (07-06-2011)
So basically they kept a huge database that listed all the token's seed values on an internet connected server...
When will company's learn, just hire some techs, a cold war bunker and transfer the data physically with armed security guards!
(\___/) (\___/) (\___/) (\___/) (\___/) (\___/) (\___/)
(='.'=) (='.'=) (='.'=) (='.'=) (='.'=) (='.'=) (='.'=)
(")_(") (")_(") (")_(") (")_(") (")_(") (")_(") (")_(")
This is bunny and friends. He is fed up waiting for everyone to help him out, and decided to help himself instead!
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
Reply With Quote
