Summary: Password managers are widely used for securing login information, but they are increasingly targeted by cybercriminals, according to a 2023 report by Picus Security. Cyberattacks on these services have tripled in the past year, with a significant portion of malware now aimed at password management systems. The rise of sophisticated attack methods highlights the importance of using password managers alongside multi-factor authentication.
Affected: Users of password managers (1Password, LastPass, NordPass, etc.)
Keypoints :
- Approximately one in three people use password managers to secure their login information.
- Cyberattacks on password managers and similar services have tripled compared to the previous year.
- 25% of all malware variants are targeting password managers or credential storage services.
- Stealing credentials from password stores has become one of the top techniques in the MITRE ATT&CK Framework.
- New multi-stage malware attacks, termed “SneakThief,” involve stealth and automation to exploit weaknesses more effectively.
- It is crucial to use password managers with multi-factor authentication and avoid reusing passwords.
Source: https://mashable.com/article/password-managers-cyberattacks-malware