Public
- Public
- Network
- Groups
- Featured
- Popular
- People

Notices by Johan S 🌀 (spiralmind@calckey.social)

Embed this notice
Johan S 🌀 (spiralmind@calckey.social)'s status on Wednesday, 17-May-2023 04:28:34 JST Johan S 🌀
in reply to
@kainoa @steve@social.dinn.ca @PerryM@newsie.social Ah, that kind of vector, I was thinking more actual data exfiltration attacks. Bit of an ingenious headline on that page, and BitWarden should also be included for that level of vulnerability. https://flashpoint.io/blog/bitwarden-password-pilfering/
In conversation 2 years ago from calckey.social permalink
Attachments
1. Domain not in remote thumbnail source whitelist: flashpoint.io
  
  Bitwarden: The Curious (Use-)Case of Password Pilfering
  
  from Flashpoint Intel Team
  
  While evaluating the behavior of Bitwarden, a popular password manager browser extension, Flashpoint’s Vulnerability Research team noticed that embedded iframes in a web page were handled in an atypical manner.
Embed this notice
Johan S 🌀 (spiralmind@calckey.social)'s status on Wednesday, 17-May-2023 04:25:03 JST Johan S 🌀
in reply to
@kainoa @steve@social.dinn.ca @PerryM@newsie.social That sounds like LastPass, I'm not aware of any published 1P breaches.

In conversation 2 years ago from calckey.social permalink
Embed this notice
Johan S 🌀 (spiralmind@calckey.social)'s status on Wednesday, 17-May-2023 04:20:22 JST Johan S 🌀
in reply to
@kainoa @steve@social.dinn.ca @PerryM@newsie.social I use 1Password to generate (and store, of course) passwords, and I just keep it cranked up to whatever 60-something the maximum is in 1Password.

Some sites get angry about that.

In conversation 2 years ago from calckey.social permalink

User actions

Known to be quite handsome in a certain angle and a certain light.Software engineer by day, nerd 24/7.Opinions posted on this account do not represent my employer. I don't even know where these things keep coming from. Who comes up with this nonsense?

Tags