More than $35 million has been stolen from over 150 victims since December — ‘nearly every victim’ was a LastPass user

L4sBot@lemmy.world · 1 year ago

More than $35 million has been stolen from over 150 victims since December — ‘nearly every victim’ was a LastPass user

lazynooblet@lazysoci.al · 1 year ago

Absolutely, Keepass is a great alternative to cloud managed password managers.

You are also vulnerable to keyloggers or clipboard captures

Keepass (and most password managers) are vulnerable to this as well.

jarfil@lemmy.world · 1 year ago

True, but KeePass has some countermeasures, like wiping the clipboard after some time, sending the password directly to a browser extension, or entering the master password on a “secure desktop” (technically not all that secure, but more secure than the lack of it).

Rootiest@lemm.ee · 1 year ago

Keepass (and most password managers) are vulnerable to this as well.

Not if you use the browser extension

Plus it does automatically clear the clipboard after a short time which isn’t perfect but it’s still an improvement over using a text file

More than $35 million has been stolen from over 150 victims since December — ‘nearly every victim’ was a LastPass user

More than $35 million has been stolen from over 150 victims since December — ‘nearly every victim’ was a LastPass user

LastPass security breach linked to $35 million stolen in crypto heists