How attackers exploited Dashlane to steal encrypted password vaults
Password manager Dashlane reveals a targeted brute-force attack that allowed hackers to download encrypted vaults from fewer than 20 accounts. The campaign leveraged device enrollment APIs to bypass security checks.