Security consultancy Mandiant has come across several cases where attackers were able to get onto computers or networks that required both smart cards and passwords. Mandiant calls this technique a “smart card proxy” The U.S. government has been stepping up its use of smart cards to help lock down its computer networks. “Everything is circumventable in the end,” says Mandiant’s Rob Lee, a director with Mandiant. In many cases, they were actually hacked years earlier, but never managed to remove malicious software from their network.”]
Source: https://www.csoonline.com/article/2126875/smart-cards-no-match-for-online-spies.html