ISE: Leading Password Managers are Insecure (CBR)


Leading password managers are rife with insecurities when it comes to memory management, failing to scrub data from local memory that could be used to expose their bank of user passwords, according to Baltimore-based security consultancy Independent Security Evaluators (ISE). As ISE notes, password use has gone from about 25 passwords per user in 2007 to 130 in 2015, and is projected to grow to 207 in 2020. As a result more and more users are expected to deploy password managers. Yet the research suggests that most fail to live up to commitments.