Cyberattacks on Password Managers Surge, Targeting Stored Credentials

A new report reveals a threefold increase in malware targeting password managers, with hackers employing advanced techniques to steal sensitive data.

A report from Picus Security highlights that 25% of over one million malware variants analyzed in 2024 targeted password managers or browser-stored credentials.
Cyberattacks on password managers tripled in 2024 compared to the previous year, reflecting a growing focus by hackers on these tools.
The MITRE ATT&CK Framework included credential theft from password stores in its top 10 cyberattack techniques for the first time, accounting for 93% of malicious actions in 2024.
Hackers are deploying a multi-stage attack method called 'SneakThief,' which combines stealth, persistence, and automation to extract credentials without detection.
Experts recommend using multi-factor authentication alongside password managers and avoiding password reuse to mitigate risks.