CybersecurityCyber security firm victim of cyber attacks, Pentagon networks potentially compromised

Published 21 March 2011

RSA, a major cyber security firm that helps defend the Pentagon’s networks as well as thousands of others around the world, has been the subject of a cyber attack; valuable information was stolen that could comprise the Department of Defense’s networks as well as Lockheed Martin’s; the attack has been identified as an advanced persistent threat; hackers stole information related to the company’s SecurID two factor authentication products; RSA’s SecureID customers include major banks, healthcare providers, and even state governments; RSA has been working with the U.S. government to secure networks against any potential security breaches

RSA, a major cyber security firm that helps defend the Pentagon’s networks as well as thousands of others around the world, has been the subject of a cyber attack. Valuable information was stolen that could comprise the Department of Defense’s networks as well as Lockheed Martin’s.

In a statement, executive chairman of RSA Arthur Coviello said, “Recently our security systems identified an extremely sophisticated cyber attack in progress being mounted against RSA.”

He added, “Our investigation also revealed that the attack resulted in certain information being extracted from RSA’s systems. Some of that information is specifically related to RSA’s SecurID two-factor authentication products.”

The attack has been identified as an advanced persistent threat, a slow and consistent attack used by hackers to obtain specific information. Hackers usually infiltrate networks through e-mail servers or web-based attacks. Once inside, they search for specific files and in this case it was information related to the company’s SecurID two factor authentication products.

Former National Security Advisor Richard Clarke said, “This is a very major security compromise that has possibly put at risk numerous sensitive government sites and private industry as well.”

RSA is one of the primary providers of two-factor authentication products, a highly secure way to identify an individual requesting permission to access information.

RSA’s SecureID customers include major banks, healthcare providers, and even state governments. Its website boasts clients like First National Bank, the French Ministry of Education, and Rolls Royce and Bentley Motors.

According to the company, there are over 25,000 clients and 40 million users worldwide using SecurID.

Coviello sought to allay concerns by assuring customers that while information relating to SecurID’s token authentication system had been stolen, RSA was “confident that the information extracted does not enable a successful direct attack on any of our RSA SecurID customers.”

RSA has been secretly working with the U.S. government to secure networks against any potential security breaches a week before the company publicly announced the attacks.