More Password Manager Headaches: New Vulnerabilities & Breaches

Рет қаралды 2,089

Күн бұрын

Пікірлер: 10

@tim895 Жыл бұрын

Thanks for the news and tips Kathy! The blind password strategy is definitely interesting and new to me Just wanted to mention some issues with video cutting out at 3:20, 6:47 and a few other instances (in case it wasn't just me)

@KathyZant Жыл бұрын

Thanks for letting me know. Tried a new video editing app and guess I'll go back to what I was using before. Thanks for watching!

@nqkoi159 Жыл бұрын

That is why I don't use full auto fill :). I will click to fill when I want. We never know when and where it will try to fill by mistake or something.

@KathyZant Жыл бұрын

Smart move!

@aaron6841 Жыл бұрын

Good password managers won't recognise a URL that it dosent recognise it won't auto fill

@KathyZant Жыл бұрын

@@aaron6841 in these cases, sandboxed d forms were autofilling which could have led to password exposure on malicious sites. This is the vulnerability that Google researchers reported.

@vimalramachandran Жыл бұрын

Why did Norton take so long to detect the credential stuffing attack and report it publicly?

@KathyZant Жыл бұрын

Hard to say. Investigation of the incident and legal maybe. Things can take a long time in big companies. It was impressive how quickly Mailchimp and WooCommerce responded to their incident.

@izzy_wow Жыл бұрын

So you recommend time based 2 factor verification e,g, an authenticator app, right! what happens if you loose your phone, it is stolen or breaks down, how do you regain access?

@KathyZant Жыл бұрын

Most applications provide backup codes. Some allow you to backup your TOTP login information. Here's more details that can help! lifehacker.com/what-do-i-do-if-i-use-two-factor-authentication-and-los-1668727532