Keepsafe premium hack
A similar bug was also discovered in LastPass. Some of the apps stored the master password in plain text or even exposed encryption keys in the code.įor example, one high severity flaw affected Informaticore's Password Manager app, which was due to the app storing the master password in an encrypted form with the encryption key hard coded in the app's code itself. In each application, the researchers discovered one or more security vulnerabilities – a total of 26 issues – all of which were reported to the application makers and were fixed before the group's report went public.Įncryption Keys for Master Key Hard-Coded in the App's CodeĪccording to the team, some password manager applications were vulnerable to data residue attacks and clipboard sniffing. "The overall results were extremely worrying and revealed that password manager applications, despite their claims, do not provide enough protection mechanisms for the stored passwords and credentials," TeamSIK said. The team examined LastPass, Keeper, 1Password, My Passwords, Dashlane Password Manager, Informaticore's Password Manager, F-Secure KEY, Keepsafe, and Avast Passwords – each of which has between 100,000 and 50 Million installs.
Keepsafe premium hack android#
Popular Android Password Manager Apps Affected By One Or More Flaws
The report, published on Tuesday by a group of security experts from TeamSIK of the Fraunhofer Institute for Secure Information Technology in Germany, revealed that nine of the most popular Android password managers available on Google Play are vulnerable to one or more security vulnerabilities.