Major password managers can leak logins in clickjacking attacks (www.bleepingcomputer.com)

submitted 1 week ago by leo@lemmy.linuxuserspace.show to c/news@lemmy.linuxuserspace.show

21 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] grue@lemmy.world 14 points 1 week ago

Once again Keepass proves to be the superior solution.

[-] halcyoncmdr@lemmy.world 11 points 1 week ago* (last edited 1 week ago)

That's not at all what the article says.

They tested 11 popular password managers, Keepass wasn't one of them.

So if it wasn't even tested for attacks that nearly every other manager fails at least 1 aspect of, then you should assume it's not safe either.

[-] grue@lemmy.world 6 points 1 week ago

then you should assume it’s not safe either.

Well, except that the method of exploit was involving the web browser plugin, which isn't a thing Keepass does to begin with.

[-] arcterus@piefed.blahaj.zone 5 points 1 week ago

There is an extension, but it's significantly simpler than the other providers.

[-] pdxfed@lemmy.world 3 points 1 week ago

Just like Craigslist; every ounce of energy out into veneer is energy not in the core product design and maintenance and also adds cost. Minimal, functional, excellent.

this post was submitted on 21 Aug 2025

52 points (100.0% liked)

Linux and Tech News

2171 readers

1 users here now

This is where all the News about Linux and Linux adjacent things goes. We'll use some of the articles here for the show! You can watch or listen at:

You can also get involved at our forum here on Lemmy:

User Space Forum

Or just get the most recent episode of the show here:

The Show

founded 2 years ago

MODERATORS

leo@lemmy.linuxuserspace.show