ISE Finds Security Flaws in Popular Password Managers

(Image: Shutterstock)

Independent Security Evaluators (ISE) found security flaws in several popular password managers. In a report released yesterday, ISE found flaws that expose user credentials in computer memory while locked. The researchers also found that “each password manager fails in implementing proper secrets sanitation for various reasons.” The researchers say this leaves them “no more secure than saving passwords in a test file.” Among the password managers that the researchers looked into where 1Password, Dashlane, KeePass, and LastPass. The study looked at how these password managers functioned on Windows 10 to understand how users’ secrets are stored even when the password manager is locked.

 

Categories

Recent