The program provides two security keys: usually one BLE key and one USB-C key. They’re part of the Advanced Protection Program that Google established a few years ago for people who are at a higher risk of being targeted by attackers and want an extra layer of security. The Titan keys are small hardware devices, comparable to a YubiKey or Solo, that are used for two-factor authentication for Google accounts. The vulnerability only affects the Bluetooth Low Energy (BLE) Titan keys, and not the USB keys.
Google is warning users of its Titan Bluetooth security keys about a weakness in the way the keys handle pairing with devices, a bug that an attacker could use to impersonate the key or the victim’s device in some highly specific circumstances.
0 kommentar(er)
