The Hacker News

Study Uncovers 25 Password Recovery Attacks in Major Cloud Password Managers

Academic study finds 25 attack methods in major cloud password managers exposing vault, recovery, and encryption design risks.

Flash Freezing Flash Boys: Per-transaction encryption to fight malicious MEV

Flash Freezing Flash Boys can be implemented with one of two cryptographic protocols, either TDH2 or PVSS. The difference lies in who bears the setup burden and how often the committee structure is ...

Passwords to passkeys: Staying ISO 27001 compliant in a passwordless era

Password-based authentication is increasingly risky as organizations adopt passkeys to strengthen security and meet ISO/IEC 27001 requirements. Passwork explains how to align passwordless adoption ...
Infosecurity Magazine

Vulnerabilities in Password Managers Allow Hackers to View and Change Passwords

A group of academic security researchers have detailed a set of vulnerabilities in four popular cloud-based password managers that could allow an attacker to view and change the passwords stored in a ...

A 2025 security breach exposed over 184 million private passwords. How to stay safe while you browse

'This is a cybercriminal’s dream working list.' ...