Not from what the article says
involves compromised download links and trojanized versions of the legitimate KeePass application that appear identical to the authentic software on the surface, while harboring dangerous capabilities beneath.
Comment on God ****** dammit, here we go again
Kyrgizion@lemmy.world 6 days agoThese kinds of breaches are at the site level. Not much you can do as a regular user if the company doesn’t hash or salt their passwords, for example.
Joeffect@lemmy.world 6 days ago
Pika@sh.itjust.works 6 days ago
I believe they are replying to the article you posted in regards to the download from legit sites comment, not the fact that the sites have shit web practices (which while correct is a different thing).
Basically the modified software was a trojan keylogger combo that was forwarding passwords created and used to a home server.
That’s not something that the sites are going wrong, nor is it the password managers fault. That’s fully the users fault for downloading a trojan.