June 6, The Register – (International)
Stolen RSA data used to hack defense contractor. Defense contractor Lockheed Martin has confirmed that a recent attack on its network was aided by the theft of confidential data relating to RSA SecurID tokens employees use to access sensitive corporate and government computer systems. According to an e-mail the company sent to reporters, theft of the data for the RSA tokens was "a direct contributing factor" in May’s intrusion into its network.
New York Times, which reported on the e-mail earlier, cited government and industry officials, who said the hackers used some of the purloined information and other techniques to "piece together the coded password of a Lockheed contractor who had access to Lockheed’s system." Lockheed said it detected the attack soon enough to prevent those responsible from accessing important data. The company is in the process of replacing 45,000 SecurID tokens used by its workers when logging in corporate networks from outside the office. The contractor, which makes fighter planes, spy satellites, and other gear related to national security, is also requiring workers to change their passwords.
Source: http://www.theregister.co.uk/2011/06/06/lockheed_martin_securid_hack/
This post is excerpted from the Homeland Security Daily Open Source Infrastructure Report for 8 June 2011.
Stolen RSA data used to hack defense contractor. Defense contractor Lockheed Martin has confirmed that a recent attack on its network was aided by the theft of confidential data relating to RSA SecurID tokens employees use to access sensitive corporate and government computer systems. According to an e-mail the company sent to reporters, theft of the data for the RSA tokens was "a direct contributing factor" in May’s intrusion into its network.
New York Times, which reported on the e-mail earlier, cited government and industry officials, who said the hackers used some of the purloined information and other techniques to "piece together the coded password of a Lockheed contractor who had access to Lockheed’s system." Lockheed said it detected the attack soon enough to prevent those responsible from accessing important data. The company is in the process of replacing 45,000 SecurID tokens used by its workers when logging in corporate networks from outside the office. The contractor, which makes fighter planes, spy satellites, and other gear related to national security, is also requiring workers to change their passwords.
Source: http://www.theregister.co.uk/2011/06/06/lockheed_martin_securid_hack/
This post is excerpted from the Homeland Security Daily Open Source Infrastructure Report for 8 June 2011.
0 comments:
Post a Comment