RSA: Cyberattack could put customers at risk

Discussion in 'other security issues & news' started by ronjor, Mar 17, 2011.

Thread Status:
Not open for further replies.
  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,802
    Location:
    Texas
    http://news.cnet.com/8301-27080_3-20044455-245.html
     
  2. JRViejo

    JRViejo Global Moderator

    Joined:
    Jul 9, 2008
    Posts:
    20,981
    Location:
    U.S.A.
     
  3. Dermot7

    Dermot7 Registered Member

    Joined:
    Dec 20, 2009
    Posts:
    3,198
    Location:
    Surrey, England.
  4. chronomatic

    chronomatic Registered Member

    Joined:
    Apr 9, 2009
    Posts:
    1,343
    RSA's refusal to provide any information about this attack should make anyone who uses their products think twice about it in the future. Their customers apparently aren't important enough to let in on what actually happened and how much risk they face.
     
  5. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
  6. chronomatic

    chronomatic Registered Member

    Joined:
    Apr 9, 2009
    Posts:
    1,343
    So a low level employee opening a phishing e-mail leads to a multi-million dollar compromise? What idiots thought up their security policy? These non-critical machines should have *no* access whatsoever to critical infrastructure where trade-secrets are stored. These machines should have been air-gapped so that Jane Doe secretary's crappy XP machine doesn't have access to the keys to the kingdom. There's no excuse for it.

    Come on RSA, just come clean: what did the attackers get? The deafening silence is making more and more people feel like SecureID is completely broken and utterly useless. I'm not a SecureID user, but I would be thoroughly ticked off about this if I were.
     
Loading...
Thread Status:
Not open for further replies.