Exploitable Flaws Found in Cloud-Based Password Managers
AI Summary
Academic security researchers claim that 'zero knowledge encryption' guarantees by leading stand-alone password managers are overblown due to exploitable flaws. Vendors are patching these vulnerabilities, but the initial claims of invulnerability may mislead users.
Texas Relevance
The article does not mention Texas or any Texas-specific entities and is broadly applicable to all credit unions regardless of location.
Original Content
'Malicious Server Threat Model' Threatens 'Zero Knowledge Encryption' Guarantees Claims by leading stand-alone password managers that their implementation of "zero knowledge encryption" means stored passwords can withstand the worst of hacker assaults are vastly overblown, say academic security researchers. They said vendors are in the process of patching the flaws they found.