Entropy used during token seed calculation.
How does this affect me?
Software tokens created prior to application of this fix are exposed to a low level of risk due to the level of entropy used during the calculation of the token seed, and therefore pre-existing software tokens offer a lower than expected level of security.
This issue only affects software tokens, hardware tokens are unaffected.
After the fix has been applied, re-issue of all existing software tokens is advised. Any tokens issued after application of the hotfix will not be affected by this issue. Please see KB article 328356 for detailed guidance, advice and best practice on the options available to implement the controlled token swap.
The fixes for Defender versions 5.9.5, 5.9.6, 5.10 and 5.11 will be available from the 13th November 2020. Please review KB article 328355 for further details on this issue.
We apologize for the inconvenience this issue may have caused.