Password managers don’t protect secrets if pwned
www.theregister.com
: Researchers demo weaknesses affecting some of the most popular options

cross-posted from: https://infosec.pub/post/42164102

Researchers demo weaknesses affecting some of the most popular options Academics say they found a series of flaws affecting three popular password managers, all of which claim to protect user credentials in the event that their servers are compromised.…

  • chunes@lemmy.worldEnglish
    11·
    14 hours ago

    And this is why I always thought a password manager is a bad idea.

    Centralizing your passwords means there is one really juicy target, that if compromised, ruins everything.

    • floofloof@lemmy.caOPEnglish
      5·
      14 hours ago

      It’s clearly a risk, but if you have dozens of accounts and passwords it’s hard to come up with a feasible alternative.

      • chunes@lemmy.worldEnglish
        21·
        13 hours ago

        my solution is to make variants of my usual password that are so different I end up having to reset my passwords constantly. Lately, I’ve taken to writing my passwords on a piece of paper in my house, which means I can choose more unique ones