News

SME2d

Peter Tóth - SME

Peter Tóth začínal ako novinár v Slovenskom denníku, neskôr prešiel do SME. Po nástupe prvej vlády Mikuláša Dzurindu sa v roku 1998 stal príslušníkom SIS. S Kočnerom sa spoznal počas kauzy únosu ...
CNET2d

Here's Why Your Password Manager App Might Be Safer Than a Browser Extension (and Why It Might Not Be)

A web-based attack called clickjacking can get information from password manager browser extensions using auto-fill settings.

Multiple top password managers vulnerable to password stealing clickjacking attacks - here’s what we know

Several password managers remain vulnerable to the attack, including these versions: The latest versions of Dashlane, ...
heise online3d

Password manager: Browser extensions can enable data theft

The DOM-based attack on browser extensions, which Marek Toth presented at Defcon 33, is new. Toth describes the basic attack as follows.

Major flaw in top password managers lets hackers steal your login details, 2FA codes, credit card info and more

Tóth’s findings were verified by the cybersecurity company Socket, who also helped to inform the vendors impacted by the ...

LastPass, 1Password, and Bitwarden extensions are vulnerable to clickjacking attacks

At the conference, security researcher Marek Tóth revealed that browser extensions for six password managers – 1Password, ...
SecurityWeek4d

Password Managers Vulnerable to Data Theft via Clickjacking

A researcher has tested nearly a dozen password managers and found that they were all vulnerable to clickjacking attacks.