Leo@lemmy.linuxuserspace.showM to Linux and Tech News@lemmy.linuxuserspace.showEnglish · 2 months agoMajor password managers can leak logins in clickjacking attackswww.bleepingcomputer.comexternal-linkmessage-square23fedilinkarrow-up153cross-posted to: pulse_of_truth@infosec.pub
arrow-up153external-linkMajor password managers can leak logins in clickjacking attackswww.bleepingcomputer.comLeo@lemmy.linuxuserspace.showM to Linux and Tech News@lemmy.linuxuserspace.showEnglish · 2 months agomessage-square23fedilinkcross-posted to: pulse_of_truth@infosec.pub
minus-squarehalcyoncmdr@lemmy.worldlinkfedilinkEnglisharrow-up11·edit-22 months agoThat’s not at all what the article says. They tested 11 popular password managers, Keepass wasn’t one of them. So if it wasn’t even tested for attacks that nearly every other manager fails at least 1 aspect of, then you should assume it’s not safe either.
minus-squaregrue@lemmy.worldlinkfedilinkEnglisharrow-up6·2 months ago then you should assume it’s not safe either. Well, except that the method of exploit was involving the web browser plugin, which isn’t a thing Keepass does to begin with.
minus-squarearcterus@piefed.blahaj.zonelinkfedilinkEnglisharrow-up5·2 months agoThere is an extension, but it’s significantly simpler than the other providers.
That’s not at all what the article says.
They tested 11 popular password managers, Keepass wasn’t one of them.
So if it wasn’t even tested for attacks that nearly every other manager fails at least 1 aspect of, then you should assume it’s not safe either.
Well, except that the method of exploit was involving the web browser plugin, which isn’t a thing Keepass does to begin with.
There is an extension, but it’s significantly simpler than the other providers.