Researchers from ETH Zurich have discovered serious security vulnerabilities in three popular, cloud-based password managers. During testing, they were able to view and even make changes to stored passwords.
  • slazer2au@lemmy.worldEnglish
    4·
    3 days ago

    The team conducted a study to scrutinise the security architecture of three popular password manager providers: Bitwarden, Lastpass and Dashlane. Between them, they serve around 60 million users and have a 23 per cent market share. The researchers demonstrated 12 attacks on Bitwarden, 7 on LastPass and 6 on Dashlane.

    • SanctimoniousApe@lemmings.worldEnglish
      4·
      3 days ago

      Relying on any centralized service with a large number of users makes it a target. If we all self-host, tho, they’ll go for viral methods of attack instead. Nothing’s ideal.