Some commercial password managers vulnerable to attack by fake apps
“Encrypted vaults are accessed by a single master password or PIN, and they store and autofill credentials for the user. However, researchers at the University of York have shown that some commercial password managers (depending on the version) may not be a watertight way to ensure cybersecurity.” – read more at Help Net Security!