Malicious servers beat zero-knowledge encryption for major cloud password managers, researchers show

Assuming a vendor is compromised (yet again), standard claims of password safety simply don't hold up, says a paper published on Monday.