Lockheed Suspended Remote Access After a Cyber Attack

Lockheed Martin Corp., the U.S. government’s top information technology provider has suspended the email remote access to corporate application after discovering a network intrusion that is related to a major RSA attack.

“As a result of the swift and deliberate actions taken to protect the network and increase IT security, our systems remain secure,” Jennifer Whitlow, a Lockheed spokeswoman, said in an e-mailed statement. “No customer, program or employee personal data has been compromised.”

The incident is related to the use of SecurID tokens from RSA to log into different accounts and may be associated with attacks on RSA Security last march. Unknown hackers have penetrated the network and gained unspecified information related to the SecurID – maybe it was the start vector generation used to create a one-time code supplied token.

SecurIDs are widely used electronic keys to computer systems that work using a two-pronged approach to confirming the identity of a person trying to access a computer system. They are designed to thwart hackers who might use key-logging viruses to capture passwords by constantly generating new passwords to enter the system.

The SecurID generates new strings of digits on a minute-by-minute basis that the user must enter along with a secret PIN (personal identification number) before he or she can access the network. If the user fails to enter the string before it expires, then access is denied.

Potential hackers need a lot of information – including user names of accounts and PIN-codes – to attack a corporate email or remote access to systems protected by RSA SecurID. It seems that Lockheed has found attempts to gain access only to that information and as a result they suspended remote access and closed some parts of network as a preventive measure.

Boeing spokesman Todd Kelley said his company had a “wide range” of systems in place to detect and prevent intrusions of its networks. “We have a robust computing security team that constantly monitors our network,” he said.

The RSA breach did raise concerns about any security tokens that had been compromised, and EMC now faced tough questions about whether “they can repair that product line or whether they need to ditch it and start over again,” he said.

EMC disclosed in March that hackers had broken into its network and stolen some information related to its SecurIDs. It said the information could potentially be used to reduce the effectiveness of those devices in securing customer networks.

Data held by Lockheed, is of great interest to the agents of other government enemies. Security experts say that it is virtually impossible for any company or government agency to build a security network that hackers will be unable to penetrate.

make sure you subscribe to my RSS feed!