Guide for Understanding the RSA Breach
0 comment(s)
The RSA security breach sheds new light on the strength of external security systems and the sophistication of fraud attacks. Since the breach, so much has been written about its impact on customers and what it means for the fraud prevention world that Memento has put together a list of news resources and articles that might provide additional context and help answer some of your questions. This event is another reminder that there is no perfect solution for online security.
What happened?
Someone launched an "extremely sophisticated cyberattack" on RSA in the form of an Advanced Persistent Threat and data was stolen related to the SecurID technology.
Read more
Impact on enterprises
Several
security
analysts today urged companies that are using SecurID to review their authentication measures and to shore them up if necessary. Until RSA releases further details on the breach it is best to assume that SecurID is vulnerable, they added.
Read more
Customers want more details – RSA makes a statement
RSA, the information security division of EMC Corp., disclosed in an open letter from RSA chief Art Coviello that the company was breached in what it calls an "extremely sophisticated attack." Some information about its security products was stolen. Customers are bracing for more details.
Read more
Legal View of RSA Breach
"
Persistent" is the operative word about the advanced persistent threat that has struck RSA and its SecurID products. "If the bad guys out there want to get to someone ... they can," says David Navetta of the Information Law Group.
Read more
Staying Vigilant
What this means to you is there’s not an immediate threat, even if whoever stole the information from RSA figures out how to hack the SecurID code. What it means is you need to make sure you practice and enforce good password discipline in addition to using the SecurID token.
Read more