Oddbean new post about | logout
ricardo | 2 months ago (raw) | export | reply | flag +7 
 YubiKeys are vulnerable to cloning attacks thanks to newly discovered side channel 

https://arstechnica.com/security/2024/09/yubikeys-are-vulnerable-to-cloning-attacks-thanks-to-newly-discovered-side-channel/

#yubikey #mfa_yubikey
Erik | 2 months ago (raw) | root | parent | reply | flag 
 🥲👀 @Casa
Erik | 2 months ago (raw) | root | parent | reply | flag 
 Seems very niche but nevertheless
Eluc | 2 months ago (raw) | root | parent | reply | flag 
 Required 10h access to the victim's Yubikey, to know the exact account targeted, 11'000$ of equipement, disassembling the key and replacing it in a new casing after the cloning.

I guess most people are fine.
semisol | 2 months ago (raw) | root | parent | reply | flag 
 Doesn’t really matter; this is the second time Infineon fucked up basic cryptography