Customers relying on RSA's SecurID authentication tokens to secure their networks may be at risk following an "extremely sophisticated cyber attack," reports CNET News.
While it's not exactly clear what type of information the intruder got a hold of, RSA chairman Art Coviello says:
While at this time we are confident that the information extracted does not enable a successful direct attack on any of our RSA SecurID customers, this information could potentially be used to reduce the effectiveness of a current two-factor authentication implementation as part of a broader attack.
Despite the lack of details, several security specialists believe the breach could pose a real threat to companies that rely on the technology, says The New York Times. Security specialist Whitfield Diffie says that if a "master key" was stolen, the intruder could duplicate cards like the ones supplied by RSA, making it possible to access corporate networks and computer systems.
Last year, RSA said its technology was used to secure the identities and assets of more than 250 million people.