this post was submitted on 03 Sep 2024
5 points (100.0% liked)
Ars Technica - All Content
81 readers
71 users here now
All Ars Technica stories
founded 4 months ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
There's a firmware update that fixes the vulnerability. Kinda moot as long as you do updates.
EDIT: Seems you have to buy a new key for that, but the difficulty of executing the vulnerability means it probably doesn't matter anyway.
I thought these device's firmware were strictly read only and can't get updates.
Apparently not.
EDIT: It seems they actually are? So I guess if you're at risk of having a national government try to break your security key, you should buy a new one.