Collaborate Disseminate
I’m trying to understand why it’s not necessary with MFA in 1Password when signing in to a new device.
This was the case that triggered my curiosity:
I created a 1Password account
I downloaded the Mac application
I installed the Chrome pl… Continue reading Why is 1Password sign-in to new device secure without MFA?
CVE-2023-24055 is a known vulnerability that enables an attacker to recover plaintext user credentials from the KeePass application.
However, due to the original KeePass being Windows-specific, I’ve been using a compatible "KeePass XC… Continue reading Is CVE-2023-24055 applicable to other password managers using the same format as the original KeePass?
Change Your Password Day — an annual reminder of just how bad passwords really are.
The post The headache of changing passwords appeared first on TechRepublic.
Continue reading The headache of changing passwords
I like to use Firefox as my password manager. It tracks username and password combinations by domain. I can see why it was designed this way. You wouldn’t want it to auto-fill a password on a completely unrelated site.
But, there are some … Continue reading How can I set a saved username and password combination in Firefox to work on multiple domains? [migrated]
A benefit to password managers, at least some of them, is that they can look at the URL and only use autotype/autofill when on the correct site, which can help prevent pharming since if instead of https://www.example.com/ you go to examp1e… Continue reading DNS hijacking/poisoning effect on URL/URI and password manager autotype/autofill
This question is about the use of a TPM by a password manager used by an end-user on a PC to store and use passwords to log in to web sites and other things that are protected only by a password.
Windows 11 requires at least TPM 2.0. Suppo… Continue reading What threats can the use of a TPM by a password manager mitigate?
In November 2022, LastPass had its second security breach in four months. Although company CEO Karim Toubba assured customers they had nothing to worry about, the incident didn’t inspire confidence in the world’s leading password manager application. Password managers have one vital job: keep your sensitive login credentials secret, so your accounts remain secure. When hackers […]
The post What is the Future of Password Managers? appeared first on Security Intelligence.
Basically every password manager (like LastPass, 1Password, …) has its Android & iOS app and browser extensions for Chrome, Safari, Firefox etc., to automatically fill in usernames and passwords.
I see this as the most obvious point … Continue reading How do password manager developers protect their app store accounts?
Chrome password manager is super convenient – it autofills passwords on website automatically, has a one-click password generation. However the management of passwords is rather lackluster, there is no fine grained control on how to read p… Continue reading Most browser-like convenience password manager [migrated]
Why do I have to provide authentication when I want to read a password stored in my own web browser while I have to do nothing to read the same password on a site’s login page?
Is my conclusion correct that asking the user for a PIN is poi… Continue reading Why do I need to provide authentication when accessing a browser’s built-in password manager?