Popular:
Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

Critical Vulnerability in YubiKey 5's Secure Element: Key Extraction Achieved

2025-06-15
Critical Vulnerability in YubiKey 5's Secure Element: Key Extraction Achieved

Security researcher Thomas Roche uncovered a critical vulnerability in the Infineon SLE78 secure element used in YubiKey 5. Through side-channel attacks, he successfully extracted the ECDSA secret key. This vulnerability affects multiple versions of Infineon's cryptographic library, impacting security across automotive, medical, industrial control, and avionics sectors. The researcher urges industries to address this vulnerability immediately.

Read more
(it4sec.substack.com)
Tech side-channel attack