Researchers have demonstrated how the leading password managers can leak credentials on Android devices when using the autofill feature with malicious apps. At the Black Hat Europe conference, Ankit Gangwal of the International Institute of Information Technology presented evidence of this vulnerability, coined “AutoSpill”. The researchers have shared findings with Google and affected password managers, with some deferring the issue to Android. Gangwal suggests passwordless authentication using private cryptographic keys as a potential solution.
![](https://healsecurity.com/wp-content/uploads/2024/07/group-ibs-threat-intelligence-and-defence-centre-equip-undergraduates-with-sophisticated.jpg)
Group-IB’s Threat Intelligence and Defence Centre Equip Undergraduates with Sophisticated Cybersecurity Technologies to Boost Threat Analysis and Enhance Cyber Resilience for Campus Start-ups
Hey there from the heart of the San Francisco Bay Area! It’s an absolute pleasure to have you back again for our chat on some