RSAiD compromis

Started by IAmLoco, Apr 05 2011 09:27 AM

You cannot reply to this topic
Go to first unread post

4 replies to this topic

#1 IAmLoco

There's no place like ::1

[QiT] Gestionaires
6,115 posts

LocationQuebec , Quebec , Canada

Posted 05 April 2011 - 09:27 AM

If you've ever wondered whether two-factor authentication systems actually boost security, things that spit out pseudorandom numbers you have to enter in addition to a password, the answer is yes, yes they do. But, their effectiveness is of course dependent on the security of the systems that actually generate those funny numbers, and as of this morning those are looking a little less reliable. RSA, the security division of EMC and producer of the SecurID systems used by countless corporations (and the Department of Defense), has been hacked. Yesterday it sent out messages to its clients and posted an open letter stating that it's been the victim of an "advanced" attack that "resulted in certain information being extracted from RSA's systems" -- information "specifically related to RSA's SecurID two-factor authentication products."

Yeah, yikes. The company assures that the system hasn't been totally compromised, but the information retrieved "could potentially be used to reduce the effectiveness of a current two-factor authentication implementation as part of a broader attack." RSA is recommending its customers beef up security in other ways, including a suggestion that RSA's customers "enforce strong password and pin policies." Of course, if security admins wanted to rely on those they wouldn't have made everyone carry around SecurID tokens in the first place.

http://www.engadget....effectiveness-o

j'adore la phrase finale Posted Image

"Does an optimistic geek person look at a hard drive as half-full or half-empty?"
Google+ Profile
Google +1

Back to top

#2 nka

Geek God

[QiT] Admins
12,054 posts

LocationQuebec, Canada

Posted 05 April 2011 - 10:03 AM

lol @ phrase final.

Hier, j'ai recu un email de AirMiles aussi qui se sont fait hacker leur banque de clients!

::: nka
Hebergement Quebec I.T.

Back to top

#3 DarkShadow

G33k

[QiT] Admins
2,770 posts

LocationLongueuil

Posted 05 April 2011 - 01:02 PM

Reçu dimanche justement..

Quote

Epsilon Informs AbeBooks of E-mail Database Breach

We have been informed by Epsilon, a third-party vendor we use to send e-mails, that an unauthorized person outside their company accessed files that included e-mail addresses of some AbeBooks customers. Epsilon has advised us that the files that were accessed did not include any customer information other than email addresses.

As a reminder, AbeBooks will never ask customers for personal or account information in an e-mail. Please exercise caution if you get any emails that ask for personal information or direct you to a site where you are asked to provide personal information.

Đ@ΓЌ §Ħ@ĐØШ
Administrateur réseau
Windows 2000, 2003, 2008

"There is no patch for stupidity."
-Kevin Mitnick

Desktop : Intel CORE i7 970, 12GB RAM, Revodrive 120GB, WD Raptor & WD Caviar Black, 2 x EVGA GTX 465 SLI - 5760x1200, Windows 7 Ultimate
Server : Intel Q6600, 8GB RAM, 1500GB, ESXi 4.1 [Windows Server 2008, OSX, Ubuntu]
Laptop : Dell Vostro 3300 - Intel CORE I3 370M, 8GB RAM, 120SSD + 750GB, Windows 7 Ultimate
Tablet : Asus Transformer Prime 32Go, ICS