James M.’s Post

View profile for James M., graphic

Co-Founder, Director, CTO

I made a video! Turn the volume up for (mild) effect. In all seriousness - I put together a very quick demonstration on how easy it is to decrypt passwords stored in browsers*. Business often concentrate on making sure data is where it's supposed to be i.e. not on users' devices. What's often forgotten about - is that 'data' is not just documents. The browsers themselves, could well be storing critical data in the form of both corporate, and personal credentials. Once an attacker gets a foothold, that's it. It's why frameworks such as #CyberEssentials are essential in all organisations - 'prevention better than cure'. A hat-tip to Marc Laliberte at WatchGuard Technologies for the demo idea. #MSP #CyberSecurity #Redinet #CyberEssentials #ISO27001 #Redinet Limited *I used Chrome for the demo, but same goes for Opera, Edge, Brave etc.

View organization page for Redinet Limited, graphic

635 followers

PSA: Your Browser Passwords Are Not Safe The design of most modern browsers, allows for an attacker to decrypt the passwords stored in their password 'managers'. This is a short demo showing how quick and easy it is once a bad actor has access to a computer (either locally or remotely). A password manager can be part of the solution, but it's not the whole solution. A multi-layered approach, such as the Cyber Essentials framework offers levels of protection across multiple areas - patching, password hygiene, endpoint security, MFA etc. Ask us about our Cyber Essentials gap analysis, and remediation services (your Cyber Insurance may rely on it!).

To view or add a comment, sign in

Explore topics