Overclock.net › Forums › Industry News › Software News › [Wired] Hacker Spies Hit Security Firm RSA
New Posts  All Forums:Forum Nav:

[Wired] Hacker Spies Hit Security Firm RSA

post #1 of 24
Thread Starter 
http://www.wired.com/threatlevel/2011/03/rsa-hacked/

Quote:
Top security firm RSA Security revealed on Thursday that it’s been the victim of an “extremely sophisticated†hack.


The company said in a note posted on its website that the intruders succeeded in stealing information related to the company’s SecurID two-factor authentication products. SecurID adds an extra layer of protection to a login process by requiring users to enter a secret code number displayed on a keyfob, or in software, in addition to their password. The number is cryptographically generated and changes every 30 seconds.
RSA is used by a lot of companies.... I guess we will be getting new keyfobs soon.
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
post #2 of 24
Facepalm, not another HBGary fiasco.
THE RIG v 2.0
(17 items)
 
  
CPUMotherboardGraphicsRAM
Intel 3770K Asus P8Z77-V MSI GTX570 8GB Corsair Vengeance 1600 
Hard DriveHard DriveHard DriveHard Drive
Samsung 830 128GB Western Digital Caviar Black 640GB Seagate Barracuda LP 1.5TB Seagate Barracuda LP 2TB 
CoolingOSMonitorKeyboard
Hyper 212+ Windows 7 Professional 64bit AOC 27" + Dell 17" OCN Ducky Shine - MX Red / Red LED 
PowerCaseMouseMouse Pad
Corsair TX650W Antec 902 Mionix Naos 3200 Steelseries QcK 
Audio
ATH-AD700 
  hide details  
Reply
THE RIG v 2.0
(17 items)
 
  
CPUMotherboardGraphicsRAM
Intel 3770K Asus P8Z77-V MSI GTX570 8GB Corsair Vengeance 1600 
Hard DriveHard DriveHard DriveHard Drive
Samsung 830 128GB Western Digital Caviar Black 640GB Seagate Barracuda LP 1.5TB Seagate Barracuda LP 2TB 
CoolingOSMonitorKeyboard
Hyper 212+ Windows 7 Professional 64bit AOC 27" + Dell 17" OCN Ducky Shine - MX Red / Red LED 
PowerCaseMouseMouse Pad
Corsair TX650W Antec 902 Mionix Naos 3200 Steelseries QcK 
Audio
ATH-AD700 
  hide details  
Reply
post #3 of 24
Quote:
As of 2009, RSA counted 40 million customers carrying SecurID hardware tokens, and another 250 million using software. Its customers include government agencies.
Dayam, now that's scary!

Um, keyfobs?
Edited by _GTech - 3/17/11 at 7:56pm
The Rock
(15 items)
 
  
Reply
The Rock
(15 items)
 
  
Reply
post #4 of 24
Thread Starter 
Quote:
Originally Posted by _GTech View Post
Um, keyfobs?
The code changes every 30s. To log in, you enter your ID, password + temp code. The authentication server verifies.
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
post #5 of 24
There is no such thing as absolute security, first rule all InfoSec professionals must learn. I would be interested to know more in depth how they accomplished this.
Containment
(18 items)
 
Metamorphosis
(19 items)
 
 
CPUMotherboardGraphicsRAM
AMD 955BE Gigabyte GA-770TA-UD3 Asus GTX560ti 12GB DDR3 1333 CL7 
Hard DriveHard DriveOptical DriveCooling
Spinpoint F3 750GB Seagate 1TB None Custom loop 
OSMonitorMonitorKeyboard
W7 Ultimate x64 Asus ML249H Asus VE228H Alienware TactX 
PowerCaseMouseMouse Pad
OCZ 550W Antec 902 Alienware TactX Razer Sphex 
AudioAudio
E-MU 0404 USB Ultrasone DJ1 Pro Headphones 
CPUCPUMotherboardGraphics
Xeon E5405 Xeon E5405 SuperMicro X7DA3 ATI X1800 
RAMHard DriveCoolingCooling
16GB DDR2 FB-DIMM Various Hyper 101 Hyper 101 
OSMonitorPowerCase
ESXi 5.0 Headless Antec NEO ECO 620W Rosewill RSV-L4000 
MouseMouse PadOtherOther
None None HP P400 IPMI Card 
Other
HP Dual Gigabit NIC 
  hide details  
Reply
Containment
(18 items)
 
Metamorphosis
(19 items)
 
 
CPUMotherboardGraphicsRAM
AMD 955BE Gigabyte GA-770TA-UD3 Asus GTX560ti 12GB DDR3 1333 CL7 
Hard DriveHard DriveOptical DriveCooling
Spinpoint F3 750GB Seagate 1TB None Custom loop 
OSMonitorMonitorKeyboard
W7 Ultimate x64 Asus ML249H Asus VE228H Alienware TactX 
PowerCaseMouseMouse Pad
OCZ 550W Antec 902 Alienware TactX Razer Sphex 
AudioAudio
E-MU 0404 USB Ultrasone DJ1 Pro Headphones 
CPUCPUMotherboardGraphics
Xeon E5405 Xeon E5405 SuperMicro X7DA3 ATI X1800 
RAMHard DriveCoolingCooling
16GB DDR2 FB-DIMM Various Hyper 101 Hyper 101 
OSMonitorPowerCase
ESXi 5.0 Headless Antec NEO ECO 620W Rosewill RSV-L4000 
MouseMouse PadOtherOther
None None HP P400 IPMI Card 
Other
HP Dual Gigabit NIC 
  hide details  
Reply
post #6 of 24
Thread Starter 
Quote:
Originally Posted by The_Punisher View Post
There is no such thing as absolute security, first rule all InfoSec professionals must learn. I would be interested to know more in depth how they accomplished this.
Yes, there is.... absolute security is possible if and only if there is absolutely no accessibility.
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
post #7 of 24
Heh, ATT uses them keyfobs. Guess they'll be getting new ones, too.
    
CPUMotherboardGraphicsRAM
Q8400 DFI LP DK P45-T2RS eVGA GTX 650 Kingston 
Hard DriveOptical DriveOSMonitor
2.8TB Total LG Super DVD Burner SATA VII Enterprise x64 Gateway FHD2401 
PowerCaseMouseMouse Pad
Corsair VX550W NZXT Source 210 White Logitech G400 Razer Kabuto 
Audio
Creative Audigy 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Q8400 DFI LP DK P45-T2RS eVGA GTX 650 Kingston 
Hard DriveOptical DriveOSMonitor
2.8TB Total LG Super DVD Burner SATA VII Enterprise x64 Gateway FHD2401 
PowerCaseMouseMouse Pad
Corsair VX550W NZXT Source 210 White Logitech G400 Razer Kabuto 
Audio
Creative Audigy 
  hide details  
Reply
post #8 of 24
I agree with Ducky! For example if your info is stored on a server that has no outside access(not connected to the internet) and the info was transfered to this server by means of physically swapping a drive from point A to point B.
Old Skool Redux
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q6600 GO Lan Party DK P35 T2RS Diamond HD 6870 4x1G GSkill HZ 
Hard DriveOptical DriveOSMonitor
2x WD Caviar Black 1TB Sony DRU 800 Vista Ultimate 2x gt35h 1x g245h 
KeyboardPowerCaseMouse
6GV2 750 watt Old Skool G700 
Mouse Pad
SteelSeries cloth 
  hide details  
Reply
Old Skool Redux
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q6600 GO Lan Party DK P35 T2RS Diamond HD 6870 4x1G GSkill HZ 
Hard DriveOptical DriveOSMonitor
2x WD Caviar Black 1TB Sony DRU 800 Vista Ultimate 2x gt35h 1x g245h 
KeyboardPowerCaseMouse
6GV2 750 watt Old Skool G700 
Mouse Pad
SteelSeries cloth 
  hide details  
Reply
post #9 of 24
Quote:
Originally Posted by ice_owl View Post
I agree with Ducky! For example if your info is stored on a server that has no outside access(not connected to the internet) and the info was transfered to this server by means of physically swapping a drive from point A to point B.
Someone can physically break in and steal it. And how useful is data unless people can access it? Ya'll knew exactly what I meant anyways.
Containment
(18 items)
 
Metamorphosis
(19 items)
 
 
CPUMotherboardGraphicsRAM
AMD 955BE Gigabyte GA-770TA-UD3 Asus GTX560ti 12GB DDR3 1333 CL7 
Hard DriveHard DriveOptical DriveCooling
Spinpoint F3 750GB Seagate 1TB None Custom loop 
OSMonitorMonitorKeyboard
W7 Ultimate x64 Asus ML249H Asus VE228H Alienware TactX 
PowerCaseMouseMouse Pad
OCZ 550W Antec 902 Alienware TactX Razer Sphex 
AudioAudio
E-MU 0404 USB Ultrasone DJ1 Pro Headphones 
CPUCPUMotherboardGraphics
Xeon E5405 Xeon E5405 SuperMicro X7DA3 ATI X1800 
RAMHard DriveCoolingCooling
16GB DDR2 FB-DIMM Various Hyper 101 Hyper 101 
OSMonitorPowerCase
ESXi 5.0 Headless Antec NEO ECO 620W Rosewill RSV-L4000 
MouseMouse PadOtherOther
None None HP P400 IPMI Card 
Other
HP Dual Gigabit NIC 
  hide details  
Reply
Containment
(18 items)
 
Metamorphosis
(19 items)
 
 
CPUMotherboardGraphicsRAM
AMD 955BE Gigabyte GA-770TA-UD3 Asus GTX560ti 12GB DDR3 1333 CL7 
Hard DriveHard DriveOptical DriveCooling
Spinpoint F3 750GB Seagate 1TB None Custom loop 
OSMonitorMonitorKeyboard
W7 Ultimate x64 Asus ML249H Asus VE228H Alienware TactX 
PowerCaseMouseMouse Pad
OCZ 550W Antec 902 Alienware TactX Razer Sphex 
AudioAudio
E-MU 0404 USB Ultrasone DJ1 Pro Headphones 
CPUCPUMotherboardGraphics
Xeon E5405 Xeon E5405 SuperMicro X7DA3 ATI X1800 
RAMHard DriveCoolingCooling
16GB DDR2 FB-DIMM Various Hyper 101 Hyper 101 
OSMonitorPowerCase
ESXi 5.0 Headless Antec NEO ECO 620W Rosewill RSV-L4000 
MouseMouse PadOtherOther
None None HP P400 IPMI Card 
Other
HP Dual Gigabit NIC 
  hide details  
Reply
post #10 of 24
Does this guy looks like he can be stopped?

The AMD machine
(14 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II X6 1055t @ 3.8 GHZ Asus M4A79XTD EVO XFX Radeon 6850 1GB OCed G.Skill Ripsaw 16 GB (2x8GB) 1512 mhz @ 7-8-7-24 
Hard DriveOptical DriveCoolingOS
|WD Caviar Black 640GB|Seagate Barracudas 2TB X2| Lite-On Black 24X DVD Burner Cooler Master Hyper 212+ Windows 7 Professional 64-bit 
MonitorKeyboardPowerCase
BenQ 24" das Keyboard Model S Brown  OCZ Fatal1ty 550W PSU Coolermaster Storm Scout 
MouseMouse Pad
Razor DeathAdder Narlyfish 
  hide details  
Reply
The AMD machine
(14 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II X6 1055t @ 3.8 GHZ Asus M4A79XTD EVO XFX Radeon 6850 1GB OCed G.Skill Ripsaw 16 GB (2x8GB) 1512 mhz @ 7-8-7-24 
Hard DriveOptical DriveCoolingOS
|WD Caviar Black 640GB|Seagate Barracudas 2TB X2| Lite-On Black 24X DVD Burner Cooler Master Hyper 212+ Windows 7 Professional 64-bit 
MonitorKeyboardPowerCase
BenQ 24" das Keyboard Model S Brown  OCZ Fatal1ty 550W PSU Coolermaster Storm Scout 
MouseMouse Pad
Razor DeathAdder Narlyfish 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Software News
Overclock.net › Forums › Industry News › Software News › [Wired] Hacker Spies Hit Security Firm RSA