Monday, 19 January 2015

Tearing Apart an Android Password Manager

With all of the various web applications we use nowadays, it can be daunting to remember all of those passwords. Many people turn to password management software to help with this. Rather than remembering 20 passwords, you can store them all in a (presumably) secure database that’s protected by a single strong password. It’s a good idea in theory, but only if the software is actually secure. [Matteo] was recently poking around an Android password management software and made some disturbing discoveries.


The app claimed to be using DES encryption, but [Matteo] wanted to put this claim to the test. …read more






Read the full article here by Hackaday

No comments: