One of the "suggested applications" to be installed in Windows 10 contained a serious vulnerability

"Suggested applications" is a configurable functionality in Windows 10, which by default displays to the user programs that he might be interested in. Tavis Ormandy (yes, this is a known anti-virus hunter) found critical vulnerabilities in one of those applications suggested to be installed by Microsoft.

Keeper Password Manager - password manager with a security hole.

In Keeper Password Manager, an investigator from the elite team Google Project Zero found a vulnerability that would allow a malicious website to steal from the local drive saved passwords. This is the same vulnerability that Tavis reported a year ago, and so far - as it turned out - it has not been patched. The worst part, however, was that in some way the Keeper Password Manager application was on a freshly installed Windows 10 system. The researcher adds that the Windows 10 image was downloaded from MSDN.

Proof of password theft.

The vulnerability was patched in version 11.4.4 and install the program updates as soon as possible.

Microsoft did not show up when recommending this program. It's probably a lot of money that a publisher can pay for finding himself on the list of recommended programs to install.

If you want to use a secure password manager, then KeePass is probably the only right and free choice. To enjoy the Polish language just download the crack and import the file to the program.

Learn more about our offer

If you sell security solutions, are a distributor, authorized partner or developer and would like to share your portfolio with a group of potential customers, advertise an event, software, hardware or other services on AVLab - simply write to us. Or maybe you had to deal with ransomware? We can also help you decrypt your files.
Read more

We use Google Cloud Translation and Gengo API’s to translate articles with exception of our comparative tests.