Crypto Vulnerability Allows Cloning of YubiKey Security Keys

A vulnerability known as "Eucleak" has been discovered in YubiKey security keys, often used for MFA authentication, which allows attackers to clone the keys by exploiting a flaw in a cryptographic library. The attack requires physical access to a YubiKey for just a few minutes to capture electromagnetic signals emitted during cryptographic operations. With this data, an attacker can create a replica of the key to access sensitive accounts and data.

While Yubico has released firmware updates to mitigate the issue for certain newer models, older YubiKey devices remain at risk due to hardware limitations that prevent updates. This discovery emphasizes the need for robust cryptographic implementations and the importance of regularly updating security devices. The vulnerability highlights the growing risk of side-channel attacks on hardware security keys and the necessity for enhanced physical security measures to protect sensitive devices from unauthorized access and cloning.

Security Week 09/04/2024