krellor

I’m not saying it doesn’t happen, but I can’t think of a single one of my kids story books that has ads. “Bear stays up for Christmas,” “llama llama nighty night,” and “if you give a mouse a cookie” amongst several dozen more come to mind that I don’t recall anything resembling an ad in.

Shows, yes, all the time.

I mean, they have drones with saws for cutting tree limbs now. When you have a big problem, start by cutting it into smaller individual problems…

One thing to keep in mind about how these vaults work, is you often unlock them and then they stay unlocked for a short period of time, like 5 minutes. So if you do compromise a system and can detect when it is unlocked, you have a decent window to programmatically extract credentials.

That said, it requires that your system has already been completely owned, pretty much. At that point, it could potentially log keystrokes and clipboard, and get credentials, including your master password.

Yeah, it sounds like the first exploit required your vault to be unlocked so that a malicious process pretending to be a legitimate integration like a browser plugin could request credentials, and the second one required installing an out of date version of the app.

Good that it is all patched, and that it wasn’t a remotely exploitable issue.

Definitely a sink, I saw one exactly like that in a restaurant bathroom. 10/10, absolutely terrible choice for a kitchen.