Author name: Tech Krustylab

Do you know that your password manager app is now the target of hackers? According to a recent survey, there is an increase in cyberattacks against saved credential manager software. Do you use any other password manager, such as NordPass, LastPass, or 1Password? You’re not by yourself. About one in three users use a password manager to protect their login credentials, per a 2023 Security.org research. Using password managers simplifies the process of accessing your applications, social media profiles, and other online services. Cybercriminals are also increasingly focusing on them. Increased attacks on password manager software Cyberattacks against password managers and related services, such as browser-stored credentials, have quadrupled in the past year, according to a new analysis from cybersecurity company Picus Security. The company’s Red Report 2025 went into depth about these results. Researchers discovered that 25% of all malware, out of over a million types, targeted credential storage services like password managers. Citing an industry methodology for categorizing cyberattacks, Picus Security stated, “For the first time ever, stealing credentials from password stores is in the top 10 techniques listed in the MITRE ATT&CK Framework.” Cybercriminals are using multi-stage assaults more frequently, which the company’s researchers have named “SneakThief.” A new kind of malware assault is described by SneakThief as involving “increased stealth, persistence, and automation.” Numerous “malicious actions,” which are present in these new malware attacks, let the hacker obtain access and export data covertly. More internet users are using password storage tools to help manage their logins since there are so many apps and online platforms to keep track of. However, hackers have modified their malevolent tactics to target password managers instead. It also makes logic. Given the opportunity to obtain all of the target’s login credentials, why would a hacker invest time and energy in obtaining the login credentials for a single service? When you can take the master key and access all the doors, why steal a key to open just one? Dr. Suleyman Ozarslan, VP of Picus Labs and co-founder of Picus Security, stated, “Threat actors are using sophisticated extraction methods, such as memory scraping, registry harvesting, and compromising local and cloud-based password stores, to obtain credentials that give attackers the keys to the kingdom.” He continued, saying: “It’s vital that password managers are used in tandem with multi-factor authentication and that employees never reuse a password, especially for their password manager.” This cannot be overemphasized. Your password manager must have an extra security setup. This will make it more and more difficult for unauthorized access and security threats.