ReadWriteEnterprise

RSA SecurID token authentication system will now be integrated with two important identity services: the Microsoft Windows Active Directory Federation Services 2.0 as well as Citrix Receiver VDI client. There will be no additional charge for this integration and this is available starting now. The announcements extend the notion of centralized authentication, authorization, and single sign-on to Web applications and services located virtually anywhere, including external networks and cloud-based services.

By now the use of phones as the second factor in a security solution is well known and there are any number of vendors operating in this space. Even Google and Facebook have added this to their services, as we wrote about earlier this summer.

RSA had a major breach this week. Attackers stole information for 40 million two-factor authentication accounts.

That's a huge breach. And the ones affected most may be IT administrators, who in turn, run the security for countless enterprise and cloud-based services in the public and private sector. The ramifications are considerable. This attack means that hundreds if not millions of people could be affected if IT administrator accounts now get hacked.