EMC has announced that their RSA division has been compromised. It seems the focus of the attack was information on their SecurID product. RSA in the letter from Art Coviello said:
While at this time we are confident that the information extracted does not enable a successful direct attack on any of our RSA SecurID customers, this information could potentially be used to reduce the effectiveness of a current two-factor authentication implementation as part of a broader attack.
Not good. It is interesting that they specifically mention APT (Advanced Persistent Threat) as the “category” of attack. As anyone who deals with advanced threats will tell you, it’s not a matter of if….it is a matter of when. I have many friends over at RSA and hopefully they are able to quickly deal with this. Sorry guys….welcome to the club