Hacking tool swipes encrypted credentials from password manager
-
"Using a password manager is one of the biggest ways that average computer users can keep their online accounts secure, but their protection is pretty much meaningless when an end user's computer is compromised. Underscoring this often ignored truism is a recently released hacking tool that silently decrypts all user names, passwords, and notes stored by the KeePass password manager and writes them to a file."
-
This is the not news of the day. Of course once an attacker is in your system, they will have access to all your stuff.
But I guess it does good to scare people more. Maybe they will educate themselves a little. I do not hold much hope for that outcome though.
-
Sadly, all this kind of news does it make people afraid to use password manager - OMG if they get my master key they get everything. They rarely say - OMG if they infect my computer they get everything, which of course we all know to be true.
-
@JaredBusch said:
Of course once an attacker is in your system, they will have access to all your stuff.
Indeed. The moral of this story is simply that all bets are off if your systems are compromised.