Follow Slashdot blog updates by subscribing to our blog RSS feed

 


Forgot your password?
Close
typodupeerror
×
Security Crime The Military United States

Duplicate RSA Keys Enable Lockheed Martin Network Intrusion 138

Posted by timothy from the nobody's-perfect dept.
An anonymous reader writes "Unknown hackers have broken into the security networks of Lockheed Martin Corp and several other US military contractors, a source with direct knowledge of the attacks told Reuters. They breached security systems designed to keep out intruders by creating duplicates to 'SecurID' electronic keys from EMC Corp's RSA security division, said the person who was not authorized to publicly discuss the matter." There's also coverage at PC Magazine.
This discussion has been archived. No new comments can be posted.

Duplicate RSA Keys Enable Lockheed Martin Network Intrusion More

Duplicate RSA Keys Enable Lockheed Martin Network Intrusion

Comments Filter:

  • Spoken like a true spokesperson... (Score:5, Insightful)

    by Zakabog ( 603757 ) <john&jmaug,com> on Saturday May 28, 2011 @05:02PM (#36275652)

    and we remain confident in the integrity of our robust, multi-layered information systems security

    Translation: Our system's breached but maybe you won't realize that if I throw enough buzz words at you...

  • Does RSA store usernames and pins? (Score:3, Insightful)

    by solarium_rider ( 677164 ) on Saturday May 28, 2011 @05:07PM (#36275674)
    Can someone explain what was actually stolen from RSA that allowed them to break into the networks? From what I understand even if you had had a duplicate SecurID number generator, you would still need the username and securid password (fixed code + random 6 digit) associated with the account to get into the network. Once you are into the network you probably also need a username (same as above) and user password to access the machines. This sounds more like the attackers must have had significant insider knowledge to get in.

  • Re:Spoken like a true spokesperson... (Score:5, Insightful)

    by betterunixthanunix ( 980855 ) on Saturday May 28, 2011 @05:09PM (#36275706)
    On the other hand, a robust security system should be able to keep your most important information secure even when a breach occurs at lower levels. So, perhaps a breach occurred that allows some expense reports to be copied but does not enable the attackers to obtain designs for stealth aircraft. A breach is not a good thing, but it does not have to be an all-or-nothing scenario.

  • Re:Spoken like a true spokesperson... (Score:4, Insightful)

    by Fallen Kell ( 165468 ) on Saturday May 28, 2011 @11:09PM (#36277408)
    For anyone working at a place like this, they know that the real data is on a separate network which has no physical connection to the internet. The only data that could possibly have been compromised would be unclassified, business trade secrets, and/or proprietary information.

    As the one official said (which was almost completely ignored by the article's authors), there should be little risk to actual projects. Really, what they got was access to "TPS reports", and other such documents. Now, there may be an issue with "Export Control" as even if some documents are unclassified, they may not be allowed to be transmitted to certain countries. But all the real information is on that other network which you need physical access to hack, which is one of the easiest things to secure.

Slashdot Top Deals

Intel CPUs are not defective, they just act that way. -- Henry Spencer

Close