Yubico Presents the First Smart Card with User Presence to Combat Super-Spy Malware

PALO ALTO, CA, Feb. 25, 2013 – Yubico, the leading provider of simple, open online identity protection for user presence, today announced that the Yubikey NEO aggressively defends against malware aimed at smart cards. Successfully piloted by leading enterprises, the new product eliminates the risk of card and PIN being remotely hacked by Trojans, which has recently happened to other smart cards used by the Federal government.

 

Last year, it was revealed that a new Trojan had been used by hackers to compromise smart cards to access sensitive information in military networks and aerospace technology firms. The hackers had adapted the Sykipot Trojan to lift card credentials from compromised systems. Using phishing emails, users were then tricked to then download a key-logger on their machines stealing PINs associated with the smart cards. Once attackers had the authentication codes and associated PINs they gained the same level of trusted access to sensitive networks as the user whose smart card credentials they have stolen.

“To mitigate the risk of computer and mobile malware, Yubico developed the YubiKey NEO, the world’s first smart card featuring USB, NFC and user presence,” said Stina Ehrensvard, CEO & founder, Yubico. “Easy to use and highly secure, the user simply inserts the device into a USB-port, or taps it to an NFC enabled mobile device. As an additional form of authentication, the user then physically touches the device to generate an encrypted pass code that cannot be triggered remotely by malware.”

The rugged, minimally sized YubiKey NEO fits naturally on a keychain. It can be ordered from the Yubico web store for $50. The product will be demonstrated at the RSA Conference in San Francisco, February 25 – 28, OATH Pavilion, Booth #839.

About Yubico

Yubico sets new global standards for simple and secure access to computers, mobile devices, servers, and internet accounts.

The company’s core invention, the YubiKey, delivers strong hardware protection, with a simple touch, across any number of IT systems and online services. The YubiHSM, Yubico’s ultra-portable hardware security module, protects sensitive data stored in servers.

Yubico is a leading contributor to the FIDO2WebAuthn, and FIDO Universal 2nd Factor open authentication standards, and the company’s technology is deployed and loved by 9 of the top 10 internet brands and by millions of users in 160 countries.

Founded in 2007, Yubico is privately held, with offices in Sweden, UK, Germany, USA, Australia, and Singapore. For more information: www.yubico.com

Press RoomPress Room

Ronnie Manning

Chief Marketing Officer
Yubico
ronnie@yubico.com

Contact RonnieContact Ronnie

Share this article:


  • Digital security’s unique role in protecting our environmentAs sustainability expands to include social, economic, and technological challenges, cybersecurity has emerged as a top global threat – with cybercrime projected to cost $12 trillion this year. Stolen credentials and phishing account for 80% of breaches. At Yubico, making the world more secure is just part of how we care for the world around […]Read moreCSREarth DaySecure It ForwardSustainability
  • Breaking down Australia’s plan to combat AI-driven phishing scamsAcross Australia, cybercrime continues to be a major challenge impacting businesses, critical infrastructure and consumers alike. The use of AI by bad actors across the spectrum of cybercrime is on the rise, and as a result, credential phishing scams are becoming increasingly sophisticated. AI is effectively helping to lower the cost of phishing and increase […]Read moreAIAPACAustraliaphishing
  • 5 fast cybersecurity tips to clean up your digital lifeWith today being Identity Management Day, now is the perfect time to take stock of your online presence, update security settings, and ensure that your personal data remains protected from cyber threats like phishing. We’re also seeing increasing concerns of DeepSeek and other AI tools around data privacy making these kinds of attacks more successful […]Read morebest practices
  • Navigating the PCI DSS 4.0 transition and meeting compliance with phishing-resistant YubiKeysIn just a few days, on March 31, 2025, decision makers in industries that involve payment processing – including financial services, retail & hospitality and telecommunications – are tasked to finalize the transition to Payment Card Industry Data Security Standard (PCI DSS) 4.0. This deadline marks a critical juncture for all organizations handling payment card […]Read moreNISTPCI DSSPCI DSS 4.0