Researchers at NinjaLab have discovered a vulnerability in Google’s Titan physical security key which means it can be cloned. The vulnerability leaves the key exposed to hackers who can gain access to users accounts without the key’s owner being aware.
Physical two-factor authentication security keys, such as Titan, are known to be the strongest form of online security available as they require a username, password, and possession of the hardware key in order to gain access to an account.