Tag Archives: SecurID

Seeds On Sale?

[caption id="" align="alignright" width="300" caption="Image via Wikipedia"]A Lockheed Martin building in Bethesda, Maryland[/caption]

With the alleged Northrop Grumman Cyber-attack, we have experienced three attempts, unleashed in few days, to leverage the compromised RSA seeds in order to steal data from U.S. Contractors.... Read More

Another Breach In The Wall

[caption id="" align="alignright" width="228" caption="Image by gpjt via Flickr"]Northrop Grumman  RQ-4 Global Hawk[/caption]

Hard Times to come for U.S. Defense Contractors: it looks like each new day reveals information of a new cyber-attack to military technology companies using (alleged) compromised SecureID seeds.... Read More

(IN)SecureID

I just finished reading this interesting article that seems to offer a different view for the attack at Lockheed Martin (actually, a lone voice which does not consider the attack related to compromised seeds), that here it is another bolt from the Blue. As a matter of fact Wired reports that a second Defense Contractor, L-3, has been targeted with penetration attacks leveraging information stolen from the infamous RSA Breach. This information was contained into an E-mail, dated April 6, sent to the 5000 group’s employees. t’s not clear from the e-mail whether the hackers were successful in their attack, or how L-3 determined SecurID was involved.... Read More

More Random Thoughts on the RSA Breach

[caption id="" align="alignright" width="266" caption="Image via Wikipedia"]The X-35, Joint Strike Fighter from Lockheed M...[/caption]

Probably it was a quite easy prediction, however it looks like what I suggested on my random thoughts on the RSA Breach has definitively come true: RSA was not the target, probably its customers were.... Read More

It was only a matter of time…

05/27 Update: Several Sources report that the “large U. S. Defense contractor” hit by the alleged compromised seeds attack could be Lockheed Martin.... Read More

Strong Authentication: Back To The Future

The month of March will go into the annals of Information security. First the breach of RSA, then the issue of fake Comodo Certificates (with the subsequent claim by the Iranian Comodo Hacker) have gradually brought down the (few) certainties the Strong Authentication technologies relied on.... Read More

Some Random Thoughts On RSA Breach

[caption id="" align="alignright" width="300" caption="Image via Wikipedia"]Security tokens from RSA Security designed as ...[/caption]

June 7 Update: RSA admits some stolen seeds were used to attack Lockeed Martin and will replace SecurID tokens for customers with concentrated user bases typically focused on protecting intellectual property and corporate networks.... Read More