Wired

YubiKeys Are a Security Gold Standard—but They Can Be Cloned

The YubiKey 5, the most widely used hardware token for two-factor authentication based on the FIDO standard, contains a cryptographic flaw that makes the finger-sized device vulnerable to cloning when ...
Ars Technica

YubiKeys are vulnerable to cloning attacks thanks to newly discovered side channel

The YubiKey 5, the most widely used hardware token for two-factor authentication based on the FIDO standard, contains a cryptographic flaw that makes the finger-size device vulnerable to cloning when ...
Bleeping Computer

New Eucleak attack lets threat actors clone YubiKey FIDO keys

A new "EUCLEAK" flaw found in FIDO devices using the Infineon SLE78 security microcontroller, like Yubico's YubiKey 5 Series, allows attackers to extract Elliptic Curve Digital Signature Algorithm ...
Hosted on MSN

The $10 "YubiKey" That Makes All Passwords Obsolete (And Why Banks Give Them Free)

Password breaches hit like clockwork-Yahoo, Equifax, LinkedIn-yet many banks keep sending eligible clients free hardware security keys. That’s because financial institutions learned something the rest ...