pull down to refresh

DEF CON Researcher Exposes How Password Managers Betray Your Trustwww.sambent.com/urgent-def-con-researcher-exposes-how-password-managers-betray-your-trust/
561 sats \ 5 comments \ @k00b 16h security
tldr if you're on a malicious website, it can make you unknowingly and unintentionally autofill personal info. Most password managers allow you to disable autofill entirely which is recommended until passwords managers mitigate the attack vector.
edit: this was posted earlier #1088323
write
preview
related posts
50 sats \ 0 replies \ @aljaz 13h
having password managers integrated with browsers and cloud synced is the biggest trick the security industry pulled on its customers
reply
50 sats \ 0 replies \ @Artilektt 15h
Use KeePass people!
reply
31 sats \ 1 reply \ @3a42879d5f 13h
I don't like that title. Makes it sound like password managers are maliciously designed to steal your creds.
Better title: How password managers are vulnerable to this newly discovered attack
reply
0 sats \ 0 replies \ @k00b OP 13h
Agreed. It's a clickbait title that I should've tamed.
reply
0 sats \ 0 replies \ @asterisk32 48m
Password managers are a single point of failure, one successful attack and your duck is cooked.
reply