Business security solutions firm RSA is
‘confident’ its customers will not be directly affected after its
SecurID two-factor authentication system was the victim of an
Advanced Persistent Threat (APT) attack.
In an open letter to the public RSA executive
chairman Art Coviello said information relating to SecurID’s
two-factor authentication products was extracted from RSA’s
systems.
“While at this time we are confident that the
information extracted does not enable a successful direct attack on
any of our RSA SecurID customers, this information could
potentially be used to reduce the effectiveness of a current
two-factor authentication implementation as part of a broader
attack,” said Coviello.
Coviello went on to reassure readers that
other RSA products were not affected in the attack and neither was
personal user information.
“It is important to note that we do not
believe that either customer or employee personally identifiable
information was compromised as a result of this incident,” he
says.
In closing, Coviello said that APT attacks are
posing greater challenges for large firms in recent times.
How well do you really know your competitors?
Access the most comprehensive Company Profiles on the market, powered by GlobalData. Save hours of research. Gain competitive edge.
Thank you!
Your download email will arrive shortly
Not ready to buy yet? Download a free sample
We are confident about the unique quality of our Company Profiles. However, we want you to make the most beneficial decision for your business, so we offer a free sample that you can download by submitting the below form
By GlobalData“APT threats are becoming a significant
challenge for all large corporations and it’s a topic I have
discussed publicly many times. As appropriate, we will share our
experiences from these attacks with our customers, partners and the
rest of the security vendor ecosystem and work in concert with
these organizations to develop means to better protect all of us
from these growing and ever more sophisticated forms of cyber
security threat.”
SecurID is a system that provides
authentication from two independent means to authenticate user
identity. The product works by providing the user with a token
generated key to use alongside a standard username and password to
authenticate access to online networks.
The tokens are used by an estimated 40 million
employees of large corporations and organisations.