YubiKey still selling old stock with vulnerable firmware
FYI, YubiKey is apparently still selling old stock with firmware vulnerable to the EUCLEAK attack instead of disposing of them, as a reader of Fefe's Blog reported:
https://blog.fefe.de/?ts=99ccc8dc
113 comments
[ 3.2 ms ] story [ 214 ms ] thread> Update: Ist sogar noch krasser, wie ein Leser anmerkt:
> zu der Yubikey-Geschichte sei noch angemerkt, dass die aktuell sogar so dreist sind erstmal ihre Lagerbestände mit verwundbaren Keys abzuverkaufen anstatt die zu verschrotten. Hab neulich zwei von den Dingern bestellt (die teure FIPS-Variante!) und was bekomme ich geliefert? Die Keys mit der alten, verwundbaren Firmware. Hintergrund soll wohl sein, dass die zunächst Behörden und andere "priorisierte" Kunden mit den Keys mit der neuen Firmware beliefern.
Machine Translation:
> Update: It's even more extreme, as a reader points out:
> Regarding the Yubikey story, it should be noted that they are currently so brazen as to sell off their stock of vulnerable keys instead of scrapping them. I recently ordered two of those things (the expensive FIPS version!) and what do I get delivered? The keys with the old, vulnerable firmware. The background seems to be that they are initially supplying authorities and other "prioritized" customers with the keys that have the new firmware.
And these YubiKey aren't exactly cheap. You'd expect the price to cover whatever they have to do on their end so that you do not receive a known vulnerable device.
But I think it would deserve more than an anonymous, unverified claim. For what I see, on Yubico's store it says which version of the firmware I am ordering.
https://www.yubico.com/blog/yubico-submits-yubikey-5-fips-se...
FIPS certification is never the thing you want if you don't specifically need that certificate number. There are two certified firmware versions, 5.4.2 and 5.4.3, and if you get a FIPS key that's what you're getting.
https://csrc.nist.gov/projects/cryptographic-module-validati...
https://www.theverge.com/2024/9/4/24235635/yubikey-unfixable...
>“The attacker would need physical possession of the YubiKey, Security Key, or YubiHSM, knowledge of the accounts they want to target, and specialized equipment to perform the necessary attack,” the company said in its security advisory. “Depending on the use case, the attacker may also require additional knowledge including username, PIN, account password, or authentication key.” But those aren’t necessarily deterrents to a highly motivated individual or state-sponsored attack.
If you already had both these things, any vulnerability in the key's firmware would be moot, surely? It's hardly a surprise that 2FA can be compromised by compromising both factors.
I could give you my security key and you'll be able to login once. If you can extract the key, then you could login without the security key. In the context of a targeted attack, that could heavily change the impact.
Yubikey security advisory: "Due to software vulnerability, always store in pocket".
:)
Without that property, might as well use a < 1$ Arduino clone that's 100x cheaper.
Also I returned my yubikey to my $work when my contract ended so I know at least Microsoft reuses these keys.
Or destroys them.
https://github.com/token2/pin_plus_firmware https://github.com/BryanJacobs/FIDO2Applet
Probably will cost 5USD
In addition to FIDO2, you can add java applet for OpenPGP (also open source), TOTP (https://github.com/JavaCardOS/Oath-Applet) and PIV/smartcard (open source as well). I tell you more - there are tons of JavaCardOS compatible applets available on github etc.
This thread talks about sub-1$ Arduinos:
https://old.reddit.com/r/arduino/comments/dixa9x/awesome_sub...
I can't speak to the quality of those, but my friend got some sub-1$ Arduionos in the past (not sure which) and said they worked.
So having my private key on the Yubikey plugged into my computer is still safer than having the private key directly on the computer, right?
You wouldn't have to pay > 50$ for a Yubikey.
But you would need this ultra-cheap device plugged into your computer to be resistant to your computer being compromised. Do you know such an off-the-shelf device?
> or your phone
Well your phone has a very large attack surface as compared to a Yubikey.
> You wouldn't have to pay > 50$ for a Yubikey.
Are you sure about that? I have a Nitrokey 3C NFC that cost more than my Yubikey, and the Nitrokey can be flashed from my computer. Meaning that if my computer is compromised, then my Nitrokey is compromised.
It's not clear to me that 50$ is expensive for a product that is not used by half the world and doesn't collect the private data of its users. I understand the frustration with the security issue, but I find it unfair to say "I would do better for < 1$".
The keys are tamper-evident.
The attack is not impossible, and surely fits within the capabilities of nation state actors. For majority of other users it's a theoretical attack.
No. Attacker replaces the shell.
I'm discounting the need to conduct phishing. That comes for free. I'll also give you that the victim may be rather unlikely to spot that their YubiKey has been replaced with a freshly manufactured copy.
For those kinds of capabilities you're still looking at nation state actors or very motivated enterprises.
Not at all. Superglue is ample.
> For those kinds of capabilities you're still looking at nation state actors or very motivated enterprises.
And that's comfort?
Nation state actors have the resources to destroy me. Defending fully against them is cost prohibitive. I'll take basic actions to make it more expensive though.
My threat model is much less well resources actors who would happily sim-swap or password-stuff, etc, and there a ubikey is enough to foil those attacks. I have locks on my doors to prevent random teenagers and miscreants from walking in, not to prevent people motivated enough to pick the locks, break a window, or go through a wall.
...whereas many users trusting the "industry’s #1 security key" pitch were relying upon a lot more.
For the threat model of keeping out random online attackers with no physical access, it seems this vulnerability doesn't matter.
'We may finish that later sometime after sales' kind of product development.
That may be too much of a risk for enterprises, but as a personal security key? That seems like a completely reasonable choice to make.
Some Mastodon infosec grifter is going to name this "Insider Triple Threat".
Not all vulnerabilities are equal.
This sounds better than a software password manager, right? Or am I missing something?
> [...] phishing, which is the attack the 99.9% of us have a practical reason to worry about [...]
Both physical and software authenticators protect just fine against that.
While some users may need to buy updated YKs, perhaps having a tier of discounted "vulnerable" new old stock and more expensive patched new stock would make the most economic and utility sense.
Has this strategy ever worked? Gitlab went public, but it's barely a fraction of what GitHub is.
Framework laptops aren't really all that big.
Maybe Android? But it had huge backing.
In any case you're right, if you try doing open source purely as a marketing tactic it may or may not work out. I think one good reason to do open source is because you believe it's more sustainable, or transparent, or just being decent to your customers.
Lastpass didn't have a majority at anytime. And their decline is related more to thei breaches and horrible practices. They are trying to be relevant now. They offered my university free subscription for all students and faculty and still people don't even consider them. At least this is among people who consider password managers.
Also for bitwarden the controversy was about their SDK licence being proprietary but they re-licenced to open source [1]
[1] https://news.ycombinator.com/item?id=41940580
GitHub is a social platform.
We would need mastodon for GitHub.
I have never reached a point where I could trust Nitrokey (I have a Nitrokey that I never used because after waiting 2 years to receive it, it still had none of the features that were announced when I ordered it).
What I'm reading from <https://ninjalab.io/eucleak/> is this:
>This vulnerability – that went unnoticed for 14 years and about 80 highest-level Common Criteria certification evaluations – is due to a non constant-time modular inversion.
The vulnerability is therefore that the secrets can be extracted without taking the YubiKey apart, by measuring timings, thus tricking you into thinking that your YubiKey is intact (but you were already compromised the moment you could not account for the location of the YubiKey). On the other hand, a well motivated adversary can take apart your YubiKey, extract the secrets through other means (every hardware key is vulnerable to this) and finally put together a new YubiKey, identical on the outside to your old YubiKey, with the same secrets.
The two scenarios are almost the same, unless you're biotagging your YubiKey (which only buys you knowledge that you've been compromised). If Yubico is selling these keys, it's because it would be too expensive for them to clearly label the firmware version on each YubiKey sold, for various reasons. I think this is a great opportunity for a competitor to arise, who hopefully allows flashing of the firmware, at a minimum. The Nitrokey seems like a good option <https://www.nitrokey.com/>.
My experience with Nitrokey is different. I trust Yubico for my threat model, I just don't trust Nitrokey at all. They seem to have more products than employees and in my experience they have a history of advertising/selling features they don't have.
They have 1. Nitrokey 2. NitroPhone 3. NitroTablet 4. NitroPad 5. NitroPC 6. NextBox 7. NitroWall 8. NetHSM which look like very different products. On top of this, they have consulting services and NitroChat (not clear to me if it is just a branded Matrix instance) and "Android FIDO SDK" (which for some reason points to https://hwsecurity.dev/, which doesn't exactly seem to be a Nitrokey product). That seems like a lot for 14-20 employees.
But then my experience was with the Nitrokey 3 NFC. They advertised all the main features that Yubikey had and accepted pre-orders. They claimed that the software was ready, in Rust and open source (!), and that it would just take a few months for the hardware. It took 2 years, and when I finally received my Nitrokey, none of the software was ready (it had just one feature, maybe FIDO?).
Finally, it is great that it is open source, but the fact that it is flashable does not sound like a security feature to me: doesn't it mean that an attacker could flash a malicious firmware on it from a compromised computer?
[1]: https://www.nitrokey.com/about
What it comes down to is that YubiKeys have better integration but Nitrokeys are more fun if you want to hack on them, and it's not really a matter of security. Note that smart cards in general can be used for the same purposes, e.g. Java Cards. USB keys do not require you to carry around a card reader.
Isn't there a difference between your compromised laptop being able to reflash your Nitrokey and your compromised laptop not being able to reflash your Yubikey, though?
> Them having less than 20 employees makes sense, it's a niche market.
Maybe, but they sell 8 different hardware products. Have you ever been involved in a hardware product? I have, and it feels like they must not put a lot of resources on them. Which is kind of proven in my experience with the fact that my Nitrokey arrived 2 years after I ordered it and by then, only a fraction of the software had been written.
Sorry, what does this mean? I couldn’t find anything on Google about it.
I do not expect a manufacturer of such hardware to be like: "Eh it is okay" when skipping the fix to their IC manufacturers fuckup saves them money, I expect them to go out of their way to protect their customers. Seen like this their refusal to replace compromised keys was already brazen, them selling compromised keys constitutes a breach of trust.
I am already researching for alternatives.
Does it really sound crazy that they would not replace all the keys they ever sold? At that price, it feels like it's obviously part of the deal. If you want to buy a security key that will get audited every day by 10 experts and receive new versions delivered in your hands by approved staff, I guess you should expect to pay more than 50 bucks, right?
> them selling compromised keys constitutes a breach of trust.
Some anonymous reader of some blog claims it. It doesn't mean it's true, does it? For what I can see, it says on the Yubico store which version of the firmware I am getting. Can anyone confirm that they ordered the new version, received the old version and Yubico refused to exchange that?
You as a manufacturer are responsible for the products you bring to market — don't want to recall your products? Then ensure they work and you don't put all your eggs in one basket.
In this case Yubico is very likely not legally bound to recall, but I made a case how this is an issue of trust. You know what would have been a good move? A deal where you can order a new one at strongly reduced prices if you can show you had an affected device, or something among those lines. Or selling the affected ones for cheap and give the customers the choice. There are many ways to deal with that situation in a better way than they did and they decided to choose the one that helped their very short term bottom line the most.
As a owner of an affected Yubikey I have to saybthat the whole episode put an questionmark behind thir product for me. Not because it was affected, because of how they dealt with it.
What did they do? What I see is that I can't choose to order a key with an older firmware, and it explicitly says "firmware 5.7" everywhere I look.
> But if they sold cars and this was a defective airbag they would have been forced to replace them.
New cars have those electronic keys that work remotely (automatically close the door when you leave, automatically open when you arrive). There has been an increase of car thefts from those keys, because they are objectively less secure. Have you ever tried asking the car manufacturer to change the key for free? Or to sell you a new car at a strongly reduced price?
https://www.yubico.com/support/security-advisories/ysa-2017-...
I had one of the affected keys. I requested a replacement via their key replacement program and got a new one in the mail.
My client was in the final stage of selecting security tokens.
They have contracts with administration and their tokens need to be secure.
I was strongly for yubikeys, now they will not be an option any longer.
It is not so much about the flaw, but about their handling of the broken security tokens, still claiming them to be somehow secure-ish.
Even if they offered us the new tokens, that wouldn't make a difference. Their claim to making the internet more secure for all, contradicts their attitude.
That is really disappointing.
The reason to get such a Hardware Token is, that the private key cannot be extracted, even if the users lose it.
They have plausible deniability for fraud with the broken devices.
Claiming that this would not be a problem and trying to explain why it is not a problem without considering their client could be right, is pure arrogance.
Only a complete exchange of the whole management of yubico could save them, when they want to be taken seriously ever again.
And of course the new management should immediately offer a cost free exchange program.
D'oh.
It is listed with the vulnerable firmware 5.4.
My understanding is that the blog post complains about the fact that there was a security vulnerability in Yubikeys and that Yubico doesn't exchange everything they have sold until now. But it makes sense to me: I buy a Yubikey at time T, with firmware F that by design cannot be modified. I don't buy a subscription that will provide me with an updated key every month, it's a one-off.
Until the security flaw was discovered, my keys were fine. So I paid 50$ per key for 4 years, I don't think it's exactly expensive. Now there are two questions for me:
1. Should I replace my keys? In my case, I don't think so (given my threat model)
2. Should I stop trusting Yubico? I don't think so. It doesn't seem like this flaw is due to a total incompetence from their part. If I stopped trusting software every time a critical flaw was discovered, I wouldn't use software anymore.
The blog post then goes on claiming that Yubico pretends that they sell keys with the updated firmware (on their store, it clearly says if I am ordering a key with firmware 5.7 or not) but sell keys with older firmware. That would be pretty bad from Yubikey, but the blog gives absolutely no proof. It could as well just be an empty claim to hurt Yubico's reputation, for what I see.
Instead of stopping the sale of them, they're dumping old stock on unsuspecting customers.
Really disappointed.
Spoiler: none of the options are warranty replacement.
https://www.yubico.com/support/security-advisories/ysa-2017-...