By analysing password managers in running states on Windows 10, ISE found a fatal flaw in an otherwise good password manager. This type of exploit requires malicous access to the OS, so potentially applies to macOS (or a jailbreaked/compromised iOS).

This highlights the difficulty of securing data on a desktop system, and indicates that password managers that remain active for long periods of time need to be particularly well designed. Limiting the time active is a sensible strategy.