RSA’s SecurID multifactor authentication technology might have been exposed via a targeted attack waged against the security firm. Customers and security experts have been trying to read between the lines of the company’s closely guarded warning to interpret just what happened and whether the technology could ultimately be compromised. RSA did provide customers with some additional, albeit sketchy, information yesterday via email. One security officer at a large enterprise says the email appears to confirm suspicions that the attackers stole information that combined with other intelligence they could glean through social engineering attacks would let them pretend to have a specific token.”]
Source: https://www.darkreading.com/attacks-breaches/securid-customers-left-to-assume-the-worst