+- Geeks for your information (https://www.geeks.fyi)
+-- Forum: News (https://www.geeks.fyi/forumdisplay.php?fid=105)
+--- Forum: Privacy & Security News (https://www.geeks.fyi/forumdisplay.php?fid=107)
+--- Thread: Password managers can be tricked into believing that malicious Android apps are legit (/showthread.php?tid=3930)
Password managers can be tricked into believing that malicious Android apps are legit - silversurfer - 26 September 18
Quote:Password managers from Keeper, Dashlane, LastPass, and 1Password found to be vulnerable, study finds. http://www.s3.eurecom.fr/~yanick/publications/2018_ccs_phishing.pdf
A new academic study published today reveals that Android-based password managers have a hard time distinguishing between legitimate and fake applications, leading to easy phishing scenarios.
The study looked at how password managers work on modern versions of the Android OS, and which of the OS features attackers can abuse to collect user credentials via phishing attacks carried out via fake, lookalike apps.
Source: https://www.zdnet.com/article/password-managers-can-be-tricked-into-believing-that-malicious-android-apps-are-legitimate/
RE: Password managers can be tricked into believing that malicious Android apps are legit - jasonX - 26 September 18
Nice piece on info there. Thanks!
A comparison review of "Keeper, Dashlane, LastPass, and 1Password" will be a nice read here.....anyone interested
RE: Password managers can be tricked into believing that malicious Android apps are legit - Mike - 13 February 23
Anyone interested in trying Dashline you can always get 6 months freeĀ https://www.dashlane.com/en/cs/3bc71f66