Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Critical vulnerabilities in web-based password managers found

Critical vulnerabilities in web-based password managers found

2014/07/14

Help Net Security - (International) Researchers at the University of California identified and reported various vulnerabilities in five Web-based password managers that could allow attackers to obtain a user's credentials. LastPass, My1Login, RoboForm, and PasswordBox reported that they closed the vulnerabilities after they were reported, while the researchers did not receive word on the issues from NeedMyPassword.

Source: http://www.net-security.org/secworld.php?id=17111

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:20:56