You probably can't trust your password manager if it's compromised (www.theregister.com)

submitted 1 week ago by lemmydev2@infosec.pub to c/pulse_of_truth@infosec.pub

15 comments fedilink hide all child comments

Researchers demo weaknesses affecting some of the most popular options Academics say they found a series of flaws affecting three popular password managers, all of which claim to protect user credentials in the event that their servers are compromised.…

you are viewing a single comment's thread
view the rest of the comments

[-] favoredponcho@lemmy.zip 12 points 1 week ago

As one of the most popular alternatives to Apple and Google's own password managers, which together dominate the market, the researchers found Bitwarden was most susceptible to attacks, with 12 working against the open-source product.

Shit

[-] mrnngglry@sh.itjust.works 1 points 1 week ago

Would self hosting help protect a user?

[-] favoredponcho@lemmy.zip 2 points 1 week ago

No because the attacks assume the server has been compromised. It might make you a smaller target, but as a smaller target, you might also be more likely to mess up securing your server in someway.

this post was submitted on 16 Feb 2026

50 points (100.0% liked)

Pulse of Truth

2327 readers

12 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 2 years ago

MODERATORS

krogoth@infosec.pub