RSA Says SecurID Hack Based On Phishing With Flash 0-Day

Trailrunner7 writes "RSA confirmed on Friday that the attack that compromised the company's high-value SecurID product was essentially a small, targeted phishing campaign that included a payload of a malicious Flash object embedded in an Excel file."

Wait wait hold up

[atari2600a]

You can embed flash in excel files!? WHY WOULD YOU DO THAT

Simple question: securid seeds?

[rtfa-troll]

Dear RSA; speaking as a customer; we need a simple answer to the question:

has the securid seeds database been compromised?

anything else you announce is fluff.

Re:Simple question: securid seeds?

[rtfa-troll]

And just to amplify this with a bit of Wikipedia manipulation; have a look at this edit which comes from 128-221-197-57.emc.com, Where EMC is RSA's parent company, which I found from this article which also includes an RSA letter which they are supposedly sending out to customers.

Full disclosure to all affected users; it shouldn't be a matter of dispute. It should be the law.

Ditto

[Kludge]

At my work we used to use the RSA token and a 4 number PIN that never changed to log into the network (as well as the regular username and password). Five failures to log in would get your account locked out.
Now we have to use our RSA token and an 8 letter/number PIN that changes every 30 days(!) to log into the network (as well as the regular username and password), and the system locks out accounts after only 3 failed log-ins.
They are obviously relying _much_ more heavily on the user selected PIN than before, almost to the point that the token output is irrelevant.