EMC's Security Division was recently hacked – a rather significant event in the cyber security world. The makers of the commonly used RSA technology issued a rare and surprising public letter announcing that they were hacked, and that, as a result, security for some of their user's security might also be compromised. (http://www.rsa.com/node.aspx?id=3872). But while RSA is trying to downplay this, this presents a huge problem for both EMC and their clients.
But what's of more interest is what EMC doesn't talk about in their note. We know the attackers were after the cryptographic algorithms that are used to randomize the RSA 2-factor identification one-pass tokens. We also know that the attackers were in there for many months, typical of today's APT-style attacks. I wonder if this attack is one of several attacks that are a precursor to something bigger. With the RSA cryptographic algorithms, a motivated attacker could bypass the security in a remote-access system secured by RSA technology - which begs the question – what is the attacker really after?
View All 
