Not sure if it’s on your radar for today but thought you might be interested in the news that Google is having to recall its Titan Security Keys after they were found to have a significant Bluetooth vulnerability which could allow hackers within 30 feet of their victim to gain access to their Google accounts or computers. It’s an ironic twist considering the Titan keys were launched as part of Google’s efforts to combat phishing attacks and improve account security.
Mark Miller, Director of Enterprise Security Support at Venafi:
“This misconfiguration seems relatively easy to exploit. The fact you must be within 30 feet of the security key isn’t an issue, especially when you consider how fast compiled and scripted software can run. In addition, lots of people conduct business in public places like coffee shops and airports, so connecting a dongle to a device isn’t that farfetched. From a technology perspective, these keys are amazing; they make security easier to a lot easier to consume. However, there is no such thing as perfect technology, so I’m glad Google is taking the initiative and recalling these keys.”
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.