The Passwordstate password manager was hacked – service clients received an update with a malicious file that transmitted data to hackers.
The developer of Passwordstate, the Australian company Click Studios, has warned customers about the hacking, according to a letter posted on Twitter by the Polish portal Niebezpiecznik, Kommersant writes .
From April 20 to April 22, the attackers distributed a malicious update to the service’s customers: a zip archive was downloaded to the devices, after the installation of which the criminals received user data. Although the passwords in Passwordstate are encrypted, there are enough tools in the public domain to decrypt them, said cybersecurity researcher Juan Andre on Twitter.
Click Studios released a patch that removes the malicious archive and recommended that customers change their passwords.
Passwordstate is used by 370,000 security professionals and 29,000 companies around the world, many of which are Fortune 500, according to Click Studios’ website.
Among Russian companies, the Fortune 500 rating in 2020 includes Gazprom, LUKOIL, Rosneft and Sberbank; none of them responded to Kommersant’s request to use Passwordstate.