Are you secure with password managers on Android?

Fraunhofer Institute security researchers found serious problems s to nine password managers for Android when they analyzed them for their research.

Password managers are popular applications used to store information ς. Όλες οι εφαρμογές που κυκλοφορούν αυτή τη στιγμή υπόσχονται ασφαλή αποθήκευση τοπικά (στον υπολογιστή σας, ή γενικότερα στο σύστημα που τις χρησιμοποιεί) ή αποθήκευση στο web κάπου σε ένα Cloud. Μερικές εφαρμογές έρχονται και με τις δύο επιλογές.password managers

A recent study by the Fraunhofer Institute analyzed nine password managers for Google's Android operating system. Researchers analyzed the following applications:

Last Pass, , My Passwords, Dashlane Password Manager, Informaticore's Password Manager, KEY, Keepsafe, Keeper, and Avast Passwords.

Some of these have more than 50 millions of installations.

The group's conclusions were very worrying for users of these applications on the Android platform.

The survey revealed that password storage applications, despite their claims, do not provide adequate protection mechanisms, and sometimes abuse users' confidence by endangering them.

Three vulnerabilities were detected only in LastPass. The first is a hard-coded master key, the second reports data leaks through the browser, and finally a vulnerability that affects LastPass 4.0.x for Android and allows hackers to steal their primary saved password.

At least one vulnerability has been identified in each of the above-mentioned applications analyzed by the researchers. Apart from the three above mentioned and not only observed in LastPass, another case has been identified that by installing a simple utility, extracting passwords was a game.

You can read all vulnerabilities for each of the above applications from the following link:

https://team-sik.org/trent_portfolio/password-manager-apps/

Let's say some of these security gaps have already been repaired, while some others are still under development. This means you should be very careful if you use password managers on the Android platform.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).