Category: Security

Keeper’s Response to ZDNet’s Article Regarding an S3 Bucket Configuration Issue

Keeper’s Response to ZDNet’s Article Regarding an S3 Bucket Configuration Issue

Today, Zack Whittaker, a security reporter at ZDNet, advised us that one of Keeper’s Amazon S3 buckets had writable access from unauthorized users. An “S3 bucket” is a Simple Storage Solution which is used to store files, at Amazon Web Services. The Amazon S3 bucket in question was a staging […]

Important Cybersecurity Information About “Meltdown” and “Spectre”

Important Cybersecurity Information About “Meltdown” and “Spectre”

Meltdown and Spectre – What Are They? Meltdown and Spectre are the names given to two different, yet similar, vulnerabilities against most modern processors that run in computers today. These exploits allow an attacker to access bits of memory that they shouldn’t normally have access to. These vulnerabilities can be […]

Response to Princeton’s Center for Information Technology Policy Article

Response to Princeton’s Center for Information Technology Policy Article

Keeper is not vulnerable to the attack outlined by the Center for Information Technology Policy research article titled “No boundaries for user identities: Web trackers exploit browser login managers”. 1. Keeper does not auto-fill credentials on any website without the user’s explicit consent. 2. Keeper enforces a same-origin policy when […]