TTPwire Vol. 1 · MITRE ATT&CK·Tagged

← All stories

Censys

Password Manager Infrastructure in the Wild: Surveying Prevalence, Internet Footprint, and Exposure

Kate Lake · 2 hours ago · Read original ↗

ATT&CK techniques detected

4 predictions
T1555.005Password Managers
63%
“scenario of a master password compromise. while some password managers offer integrated totp functionality, the most security - conscious users may consider keeping their second factor separate from their password vault. conventional wisdom around self - hosted software is that c…”
T1555.005Password Managers
45%
“dire than commonly thought – particularly when that software holds the keys to one ’ s kingdom. the post password manager infrastructure in the wild : surveying prevalence, internet footprint, and exposure appeared first on censys.”
T1555.005Password Managers
44%
“are part of the psono server and allow “ promoted users ” ( e. g. your admins ) to fulfil some tasks ( e. g. reset a second factors of other users ) ”. 20 distinct certificate subject dns containing *. gov domains, including some that appear to be from cities in the u. s., austra…”
T1190Exploit Public-Facing Application
41%
“in polling the / version. json endpoint for all the web interfaces we identified, we found that 27 % are running 2026. 1. 1, released on february 11, 2026. the oldest version in the top 10 is version 2024. 1. 2, which was released january 30, 2024. there ’ s a chance that current…”

Summary

Executive Summary Introduction At Censys, we often discuss good security hygiene as it relates to keeping sensitive or critical assets off the public Internet. Password managers are a common recommendation for improving security hygiene, both for personal individual use as well as within organizations.  Recommending a tool in theory and deploying it safely in practice […]

The post Password Manager Infrastructure in the Wild: Surveying Prevalence, Internet Footprint, and Exposure appeared first on Censys.