Linux and Tech News

2300 readers

2 users here now

This is where all the News about Linux and Linux adjacent things goes. We'll use some of the articles here for the show! You can watch or listen at:

You can also get involved at our forum here on Lemmy:

User Space Forum

Or just get the most recent episode of the show here:

The Show

founded 2 years ago

MODERATORS

leo@lemmy.linuxuserspace.show

Major password managers can leak logins in clickjacking attacks (www.bleepingcomputer.com)

submitted 1 month ago by leo@lemmy.linuxuserspace.show to c/news@lemmy.linuxuserspace.show

23 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] halcyoncmdr@lemmy.world 8 points 1 month ago* (last edited 1 month ago) (1 children)

That's not at all what the article says.

They tested 11 popular password managers, Keepass wasn't one of them.

So if it wasn't even tested for attacks that nearly every other manager fails at least 1 aspect of, then you should assume it's not safe either.

[–] grue@lemmy.world 5 points 1 month ago (1 children)

then you should assume it’s not safe either.

Well, except that the method of exploit was involving the web browser plugin, which isn't a thing Keepass does to begin with.

[–] arcterus@piefed.blahaj.zone 5 points 1 month ago

There is an extension, but it's significantly simpler than the other providers.