13
A security audit last month made me ditch my password manager of 5 years
The auditor pointed out that my manager stored plaintext backups in a cloud folder, and I never even checked. Has anyone else had a security pro call them out on a tool they trusted for years?
2 comments
Log in to join the discussion
Log In2 Comments
sanchez.blake1mo ago
Oh man, that's rough. A buddy of mine had almost the same thing happen with his password manager from 2019. The auditor found out it was saving his master password in a hidden config file on his desktop that anyone could just open. He thought he was being so secure for years but really his whole life was just sitting there in plain text. He switched to a different one after that but still jokes about how dumb he felt.
7