4412 shaares
We found that in all password managers we examined, trivial secrets extraction was possible from a locked password manager, including the master password in some cases, exposing up to 60 million users that use the password managers in this study to secrets retrieval from an assumed secure locked state. Password Manager, Encryption, Windows Memory Model, Memory Forensics, Key Derivation Function (KDF), Malware, Reverse Engineering, Master Password, Key Logger, Process Memory, Control Flow Analysis, SGX.
Bon apparemment, l'état des gestionnaires de mots de passe n'est pas brillant, même Keepass 😖😥😭.