Hackers have managed to steal information related to the hardware token authentication devices (SecurID) made by RSA, the same devices that websites that require higher levels of security, like banks, use to verify user login. While RSA says that the theft should not enable a direct attack on SecurID, it could be used in a broader attack.
Wired.com - The company said in a note posted on its website that the intruders succeeded in stealing information related to the company’s SecurID two-factor authentication products. SecurID adds an extra layer of protection to a login process by requiring users to enter a secret code number displayed on a keyfob, or in software, in addition to their password. The number is cryptographically generated and changes every 30 seconds.
Click here for the full story.