More than $35 million has been stolen from over 150 victims since December — ‘nearly every victim’ was a LastPass user::Security experts believe some of the LastPass password vaults stolen during a security breach last year have now been cracked open following a string of cryptocurrency heists

  • lazynooblet@lazysoci.al
    link
    fedilink
    English
    arrow-up
    3
    ·
    1 year ago

    Absolutely, Keepass is a great alternative to cloud managed password managers.

    You are also vulnerable to keyloggers or clipboard captures

    Keepass (and most password managers) are vulnerable to this as well.

    • Rootiest@lemm.ee
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      Keepass (and most password managers) are vulnerable to this as well.

      Not if you use the browser extension

      Plus it does automatically clear the clipboard after a short time which isn’t perfect but it’s still an improvement over using a text file

    • jarfil@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      True, but KeePass has some countermeasures, like wiping the clipboard after some time, sending the password directly to a browser extension, or entering the master password on a “secure desktop” (technically not all that secure, but more secure than the lack of it).