“The password generator included in Kaspersky Password Manager had several problems. The most critical one is that it used a PRNG not suited for cryptographic purposes. Its single source of entropy was the current time. All the passwords it created could be bruteforced in seconds.”

donjon.ledger.com/kaspersky-pa

They used math.random() on the web version y’all. This is a “security” company. I’m speechless.

Follow

@bob Ah, I thought it was a reply to the other thread.
So less ironic but still, not sure why it’s not showing up.

· · Web · 0 · 0 · 0
Sign in to participate in the conversation
Aral’s Mastodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!