RSA says SecurID token information was stolen by a nation

Summary:RSA has said that two groups of hackers working in tandem for a nation state were behind the sophisticated cyberattack that stole information on its SecurID tokens.

RSA executive chairman Art Coviello said on Tuesday, that there were two groups of hackers working for a nation-state, who were behind a cyberattack on RSA that stole information on its SecurID tokens. "We know there were two groups because of the methodology in the attack," Coviello said, "We have not attributed the attack to a particular nation state, although we are very confident, with the skill and the degree and the resource behind the attack, that it could only have been perpetrated by a nation state."

RSA disclosed the cyberattack in March. As part of the attack, hackers stealthily removed information related to SecurID, which is used by thousands of large organizations to authenticate staff. In June, the company said it would replace SecurID tokens for virtually all its customers, after stolen data was found to have been used in a failed attack on Lockheed Martin.

Coviello told press at the RSA Conference in London that the attack on RSA aimed to grab information that could be used for cyber-espionage, by stealing data largely from defence contractors. The hackers left enough traces for an investigation, but RSA does not have the forensic evidence to track the exfiltrated information back to a particular nation state, he added.

For more on this story, read RSA: Nation state double-teamed on SecurID attack on ZDNet UK.

Topics: Security, Networking

About

Tom is a technology reporter for ZDNet.com, writing about all manner of security and open-source issues.Tom had various jobs after leaving university, including working for a company that hired out computers as props for films and television, and a role turning the entire back catalogue of a publisher into e-books.Tom eventually found tha... Full Bio

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Related Stories

The best of ZDNet, delivered

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.