GIGAZINE

Physical device "YubiKey" which enables one-touch secure 2-step authentication and so on corresponds to USB Type-C

CES 2017, the world's largest technology trade fair, was held for four days from 5th January to 8th January 2017. Among them, Yubico, a technology company from Sweden, is using "USB Type-C ...
heise online

Yubikey cloning attack: Apparently possible – but not trivial

Attackers can exploit a security vulnerability in Yubikey and YubiSHM from Yubico and access keys. However, this requires a lot of effort. IT security researchers have discovered a security ...
Engadget

YubiKey vulnerability will let attackers clone the authentication device

NinjaLab, a security research company, has discovered a vulnerability that would allow bad actors to clone YubiKeys. As the company has explained in a security advisory, NinjaLab found a vulnerability ...
GIGAZINE

YubiKey 5 vulnerable to side-channel attack, YubiKey versions older than 5.7 are permanently at risk

FIDO authentication, is vulnerable. Attacking the vulnerability requires advanced knowledge and expensive equipment, but because YubiKey firmware cannot be updated ...
Bleeping Computer

New Eucleak attack lets threat actors clone YubiKey FIDO keys

A new "EUCLEAK" flaw found in FIDO devices using the Infineon SLE78 security microcontroller, like Yubico's YubiKey 5 Series, allows attackers to extract Elliptic Curve Digital Signature Algorithm ...
Windows Central

X goes down hard with a security ‘YubiKey’ error affecting millions of Twitter users

Popular social network X (aka Twitter) is having significant issues with users unable to log in. This is our ongoing coverage and status updates of the situation. Of course, when you try to do the ...
TechRadar

YubiKey FIDO authenticators could be abused through unpatchable cryptographic flaw

All physical multi-factor authentication (MFA) keys that work on Infeneon’s SLE78 microcontroller were said to be vulnerable to a cryptographic flaw which allows threat actors to clone the gadget and ...