Ars Technica

YubiKeys are vulnerable to cloning attacks thanks to newly discovered side channel

The YubiKey 5, the most widely used hardware token for two-factor authentication based on the FIDO standard, contains a cryptographic flaw that makes the finger-size device vulnerable to cloning when ...
Wired

YubiKeys Are a Security Gold Standard—but They Can Be Cloned

The YubiKey 5, the most widely used hardware token for two-factor authentication based on the FIDO standard, contains a cryptographic flaw that makes the finger-sized device vulnerable to cloning when ...
ZDNet

A security key for every employee? YubiKey-as-a-Service goes global

Until now, YubiKey-as-a-Service -- Yubico's provisioning and delivery offering -- was available only in a handful of countries, due primarily to various local logistics and delivery challenges. Today, ...
The Verge

YubiKeys have an unfixable security flaw — but it’s difficult to exploit

Posts from this topic will be added to your daily email digest and your homepage feed. The vulnerability impacts almost all older YubiKey security tokens. The vulnerability impacts almost all older ...
The Verge

Yubico bolsters authentication security with updated YubiKey 5 series devices

New security keys are needed to benefit from the improved firmware as existing hardware can’t be updated. New security keys are needed to benefit from the improved firmware as existing hardware can’t ...
Bleeping Computer

New Eucleak attack lets threat actors clone YubiKey FIDO keys

A new "EUCLEAK" flaw found in FIDO devices using the Infineon SLE78 security microcontroller, like Yubico's YubiKey 5 Series, allows attackers to extract Elliptic Curve Digital Signature Algorithm ...
Forbes

Yubico Issues YubiKey Manager Security Alert For Windows Users

When it comes to user authentication, there are many options available, from passwords at the weaker end of the security spectrum to hardware keys at the other. But what if the hardware security key ...