And after this exposure, most of the password managers remain vulnerable. And as Mark said, when he reach out to them, they never responded. So this is still very serious flaw on their system and hopefully they are going to be patched soon. For sure most of us might have used one or two of those password manager because we think we are safe with them.
Thank you for the very detailed explanation. I just love it when these cyber security experts exposes some of these "innovative tools" that's meant to make our lives easier when in fact they are packed up with flaws and could become our worse nightmare. I don't even know what to make of it since password managers operators didn't respond, are they aware of these flaws and thought no one else would notice? The message for me is clear; stay away from them.