KeePass looter: Password plunderer rinses pwned sysadmins

Darren Pauli reports:

Kiwi hacker Denis Andzakovic has developed an application that steals password vaults from the popular local storage vault KeePass.

The jeu de mots KeyFarce works when a user has logged into their vault, and will dump the contents to a file that attackers can steal.

It is no death knell for KeePass or other password managers, but is an extra bow in the quiver of attackers capable of compromising a target’s machine.

Read more on The Register.

About the author: Dissent

Comments are closed.