A March attack on RSA’s SecurID authentication service has possibly claimed its first big victim: Lockheed Martin.
According to a source speaking to Reuters, unknown hackers have broken into Lockheed Martin’s security systems by using duplicate SecurID tokens to spoof legitimate authentications into the network. These SecurID tokens are analogous to Blizzard’s World of Warcraft Authenticators: Tiny little keyfobs that display an ever-changing code one must enter to log into a protected service.
Lockheed hasn’t issued comment on alleged breach itself, leading only to speculation as to what data, if any, those breaching the company’s network were able to acquire. But the plunder could be vast: Lockheed is the nation’s largest military contractor, and it undoubtedly has treasure troves of data about existing and future weapons systems as well as information related to the various cybersecurity services the company provides.