10 matches found
EUVD-2022-4934
Malicious code in bioql PyPI...
LastPass: ‘Horse Gone Barn Bolted’ is Strong Password
The password manager service LastPass is now forcing some of its users to pick longer master passwords. LastPass says the changes are needed to ensure all customers are protected by their latest security improvements. But critics say the move is little more than a public relations stunt that will...
LastPass: Hackers Stole User Data and Encrypted Password Vaults
By Deeba Ahmed It turns out that hackers stole much more than just the source code from LastPass. This is a post from HackRead.com Read the original post: LastPass: Hackers Stole User Data and Encrypted Password Vaults...
GHSA-Q9QR-H33G-FW3J TeamPass Storing Passwords in a Recoverable Format vulnerability
TeamPass version 2.1.27 and earlier contains a Storing Passwords in a Recoverable Format vulnerability in Shared password vaults that can result in all shared passwords are recoverable server side. This attack appears to be exploitable via any vulnerability that can bypass authentication or role...
Hacking Hardware Password Managers: The RecZone
TL:DR Hardware security can be difficult to fathom, so I set out to research three password vaults as a newbie, sharing my findings. I picked three popular hardware vaults, each with different components, requiring different skills and equipment. Here's how I learned about disassembly, chipset...
CVE-2019-1000001
TeamPass version 2.1.27 and earlier contains a Storing Passwords in a Recoverable Format vulnerability in Shared password vaults that can result in all shared passwords are recoverable server side. This attack appears to be exploitable via any vulnerability that can bypass authentication or role...
CVE-2019-1000001
TeamPass version 2.1.27 and earlier contains a Storing Passwords in a Recoverable Format vulnerability in Shared password vaults that can result in all shared passwords are recoverable server side. This attack appears to be exploitable via any vulnerability that can bypass authentication or role...
Design/Logic Flaw
TeamPass version 2.1.27 and earlier contains a Storing Passwords in a Recoverable Format vulnerability in Shared password vaults that can result in all shared passwords are recoverable server side. This attack appears to be exploitable via any vulnerability that can bypass authentication or role...
CVE-2019-1000001
CVE-2019-1000001 affects TeamPass 2.1.27 and earlier, where passwords are stored in a recoverable format within shared password vaults. The underlying issue enables recovery of all shared passwords, and the description notes exploitation possible via bypassing authentication or role assignment. T...
Honey Encryption Deceives Hackers with Plausible Data
Traps are constantly set on the Internet to snare hackers in order to research their behavior and tactics. Many of these traps are honeypots or honeynets that take the form of deliberately unpatched computers or infrastructure exposed to the Internet that lure attackers to break in while their...