mleku on Nostr: "The YubiKey 5, the most widely used hardware token for two-factor authentication ...
"The YubiKey 5, the most widely used hardware token for two-factor authentication based on the FIDO standard, contains a cryptographic flaw that makes the finger-size device vulnerable to cloning when an attacker gains brief physical access to it, researchers said Tuesday."
well duh, that's the whole point of it?
i think the fingerprint enabled devices have a countermeasure that they require a fingerprint match to work but that can also be spoofed much the same as an electrical fucking contact
TL;DR: keep your yubikey on you at all times ffs
This is what, the 2nd huge Infineon fuckup? note1lar…n9g7
