• KickMeElmo
    link
    fedilink
    arrow-up
    1
    arrow-down
    1
    ·
    edit-2
    3 months ago

    There’s a firmware update that fixes the vulnerability. Kinda moot as long as you do updates.

    EDIT: Seems you have to buy a new key for that, but the difficulty of executing the vulnerability means it probably doesn’t matter anyway.

    • danski@lemmy.world
      link
      fedilink
      arrow-up
      2
      ·
      3 months ago

      I thought these device’s firmware were strictly read only and can’t get updates.

      • KickMeElmo
        link
        fedilink
        arrow-up
        1
        ·
        edit-2
        3 months ago

        Apparently not.

        EDIT: It seems they actually are? So I guess if you’re at risk of having a national government try to break your security key, you should buy a new one.