SecurIDs Come Under Siege

RSA Security is offering to provide security monitoring and replace its well-known SecurID tokens—devices used by millions of corporate workers to securely log on to their computers—"for virtually every customer we have," the company's Chairman Art Coviello said in an interview.

In a letter to customers Monday, the EMC Corp. unit openly acknowledged for the first time that intruders had breached its security systems at defense contractor Lockheed Martin Corp. using data stolen from RSA.

SecurID tokens have become a fixture of office life at thousands of corporations, used when employees log onto computers or sensitive software systems. The token is an essential piece of security, acting as an ever-changing password that flashes a series of six digits that should be virtually impossible to duplicate.

Mr. Coviello didn't specify what happened to the tokens at Lockheed. The intruders didn't take any Lockheed customer or employee data. But as a precaution, he said RSA will offer to replace nearly all tokens—millions of them used by government agencies and businesses ranging from Rolls Royce Motor Cars Ltd. to PokerStars.com.

Some customers may not need to replace them because of their specific security needs, he said. "We believe and still believe that the customers are protected."

Click here to read more on this story from The Wall Street Journal.