An ongoing phishing campaign is targeting LastPass and Bitwarden users with fake emails claiming that the companies were hacked, urging them to download a supposedly more secure desktop version of the password manager.
Man, you gotta be really out of the loop if you install a “more secure” version of your password manager based on an email you received.
sleepundertheleaves@infosec.pub
on 16 Oct 21:58
collapse
I knew a guy, a retired software engineer, who’d been at the cutting edge of tech for decades. He declined mentally in his last few years, sadly, we suspect early stage dementia, though he refused to admit it or seek treatment.
I don’t know if he used a password manager, but I think he would have fallen for this kind of phishing campaign in his last few years. Smart enough to use a password manager, but, at the time, credulous enough to click bad links.
He died just before the crypto boom of 2021 and I thought about him every time I saw rhetoric about “being your own bank”.
threaded - newest
Man, you gotta be really out of the loop if you install a “more secure” version of your password manager based on an email you received.
I knew a guy, a retired software engineer, who’d been at the cutting edge of tech for decades. He declined mentally in his last few years, sadly, we suspect early stage dementia, though he refused to admit it or seek treatment.
I don’t know if he used a password manager, but I think he would have fallen for this kind of phishing campaign in his last few years. Smart enough to use a password manager, but, at the time, credulous enough to click bad links.
He died just before the crypto boom of 2021 and I thought about him every time I saw rhetoric about “being your own bank”.