this post was submitted on 03 Sep 2024
5 points (100.0% liked)

Ars Technica - All Content

119 readers
17 users here now

All Ars Technica stories

founded 6 months ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
5
YubiKeys are vulnerable to cloning attacks thanks to newly discovered side channel (arstechnica.com)
submitted 5 months ago by [email protected] to c/[email protected]
4 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[โ€“] [email protected] 0 points 5 months ago* (last edited 5 months ago) (3 children)

There's a firmware update that fixes the vulnerability. Kinda moot as long as you do updates.

EDIT: Seems you have to buy a new key for that, but the difficulty of executing the vulnerability means it probably doesn't matter anyway.

[โ€“] sprack 2 points 5 months ago

Also requires $11k in gear and physical access to the key.

load more comments (2 replies)