Password Manager Breaches: Why 2FA is Useless Here
Dr. Dominik Schürmann explains why 2FA is useless if the infrastructure of traditional password managers is breached.
Topic
Identity and access management
When & Where
Details
Format:
Technology lecture
Session description
Dr. Dominik Schürmann, holding a PhD in IT security with over 15 scientific publications, will deliver a talk titled "Password Manager Breaches: Why 2FA is Useless Here." With extensive experience in both research and practical application development, Dr. Schürmann founded heylogin GmbH in 2018, the first password manager with full hardware-based end-to-end encryption, developed and hosted in Germany.
The talk addresses a significant security issue highlighted by the December 2022 breach, where attackers captured encrypted vaults of LastPass. This breach revealed that the master password was the only barrier between attackers and the encrypted data, rendering any configured 2FA methods ineffective. Dr. Schürmann will explain why 2FA is useless in such scenari ...
The talk addresses a significant security issue highlighted by the December 2022 breach, where attackers captured encrypted vaults of LastPass. This breach revealed that the master password was the only barrier between attackers and the encrypted data, rendering any configured 2FA methods ineffective. Dr. Schürmann will explain why 2FA is useless in such scenari ...
Moderator
