Pulse of Truth

2333 readers

102 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 2 years ago

MODERATORS

krogoth@infosec.pub

You probably can't trust your password manager if it's compromised (www.theregister.com)

submitted 3 weeks ago by lemmydev2@infosec.pub to c/pulse_of_truth@infosec.pub

15 comments fedilink hide all child comments

Researchers demo weaknesses affecting some of the most popular options Academics say they found a series of flaws affecting three popular password managers, all of which claim to protect user credentials in the event that their servers are compromised.…

you are viewing a single comment's thread
view the rest of the comments

[–] favoredponcho@lemmy.zip 12 points 3 weeks ago (1 children)

As one of the most popular alternatives to Apple and Google's own password managers, which together dominate the market, the researchers found Bitwarden was most susceptible to attacks, with 12 working against the open-source product.

Shit

[–] mrnngglry@sh.itjust.works 1 points 3 weeks ago (1 children)

Would self hosting help protect a user?

[–] favoredponcho@lemmy.zip 2 points 3 weeks ago

No because the attacks assume the server has been compromised. It might make you a smaller target, but as a smaller target, you might also be more likely to mess up securing your server in someway.