26 September 18, 16:58
Quote:Password managers from Keeper, Dashlane, LastPass, and 1Password found to be vulnerable, study finds. http://www.s3.eurecom.fr/~yanick/publica...ishing.pdf
A new academic study published today reveals that Android-based password managers have a hard time distinguishing between legitimate and fake applications, leading to easy phishing scenarios.
The study looked at how password managers work on modern versions of the Android OS, and which of the OS features attackers can abuse to collect user credentials via phishing attacks carried out via fake, lookalike apps.
Source: https://www.zdnet.com/article/password-m...egitimate/