Tag Archives: password managers

Dashlane explains how attackers managed to download encrypted password vaults

That means the chances of the attackers decrypting one of the encrypted vaults they obtained is very small in the event the master password was strong, meaning long, randomly generated, and has high entropy. However, not everyone uses such master passwords. In the event the master password was included in word lists exchanged by password… Read More: Dashlane explains how attackers managed to download encrypted password vaults »

Can’t make sense of Dashlane’s vault theft notification? You’re not alone.

There’s a lot that doesn’t add up in a security advisory password manager Dashlane published Monday, warning that attackers managed to obtain 20 encrypted user vaults. “Starting on Sunday, May 31, 2026, an external party launched a brute force attack against certain Dashlane user accounts,” the company said. “The goal of the attack was to… Read More: Can’t make sense of Dashlane’s vault theft notification? You’re not… »

Password managers’ promise that they can’t see your vaults isn’t always true

Over the past 15 years, password managers have grown from a niche security tool used by the technology savvy into an indispensable security tool for the masses, with an estimated 94 million US adults—or roughly 36 percent of them—having adopted them. They store not only passwords for pension, financial, and email accounts, but also cryptocurrency… Read More: Password managers’ promise that they can’t see your vaults isn’t… »

High-severity vulnerability in Passwordstate credential manager. Patch now.

The maker of Passwordstate, an enterprise-grade password manager for storing companies’ most privileged credentials, is urging them to promptly install an update fixing a high-severity vulnerability that hackers can exploit to gain administrative access to their vaults. The authentication bypass allows hackers to create a URL that accesses an emergency access page for Passwordstate. From… Read More: High-severity vulnerability in Passwordstate credential manager. Patch now. »

How worried should we be about the “AutoSpill” credential leak in Android password managers?

Enlarge / Close up of hand holding smartphone and screen applications with unlocking mobile phones. Concept of technological safety. Getty Images reader comments 42 By now, you’ve probably heard about a vulnerability named AutoSpill, which can leak credentials from any of the seven leading password managers for Android. The threat it poses is real, but… Read More: How worried should we be about the “AutoSpill” credential leak… »

LastPass users: Your info and password vault data are now in hackers’ hands

Getty Images reader comments 255 with 0 posters participating Share this story LastPass, one of the leading password managers, said that hackers obtained a wealth of personal information belonging to its customers as well as encrypted and cryptographically hashed passwords and other data stored in customer vaults. The revelation, posted on Thursday, represents a dramatic… Read More: LastPass users: Your info and password vault data are now… »

Backdoored password manager stole data from as many as 29K enterprises

Getty Images reader comments 10 with 8 posters participating Share this story As many as 29,000 users of the Passwordstate password manager downloaded a malicious update that extracted data from the app and sent it to an attacker-controlled server, the app maker told customers. In an email, Passwordstate creator Click Studios told customers that bad… Read More: Backdoored password manager stole data from as many as 29K… »

Chrome and Edge want to help with that password problem of yours

Enlarge / Please don’t do this. Getty Images reader comments 105 with 87 posters participating Share this story If you’re like lots of people, someone has probably nagged you to use a password manager and you still haven’t heeded the advice. Now, Chrome and Edge are coming to the rescue with beefed-up password management built… Read More: Chrome and Edge want to help with that password problem… »