Linux and Tech News

2171 readers

1 users here now

This is where all the News about Linux and Linux adjacent things goes. We'll use some of the articles here for the show! You can watch or listen at:

You can also get involved at our forum here on Lemmy:

User Space Forum

Or just get the most recent episode of the show here:

The Show

founded 2 years ago

MODERATORS

leo@lemmy.linuxuserspace.show

Major password managers can leak logins in clickjacking attacks (www.bleepingcomputer.com)

submitted 1 week ago by leo@lemmy.linuxuserspace.show to c/news@lemmy.linuxuserspace.show

23 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] halcyoncmdr@lemmy.world 8 points 1 week ago* (last edited 1 week ago) (1 children)

That's not at all what the article says.

They tested 11 popular password managers, Keepass wasn't one of them.

So if it wasn't even tested for attacks that nearly every other manager fails at least 1 aspect of, then you should assume it's not safe either.

[–] grue@lemmy.world 5 points 1 week ago (1 children)

then you should assume it’s not safe either.

Well, except that the method of exploit was involving the web browser plugin, which isn't a thing Keepass does to begin with.

[–] arcterus@piefed.blahaj.zone 5 points 1 week ago

There is an extension, but it's significantly simpler than the other providers.