Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Full history of recent Keeper releases
Admin Console 17.1 [Release Notes]
Android 17.0 [Release Notes]
Automator 17.0 [Release Notes]
Browser Extension 17.0 [Release Notes]
iOS 17.0 [Release Notes]
Vault 17.0 [Release Notes]
Admin Console 17.0 [Release Notes]
Web Vault and Desktop App 17.0 [ Release Notes]
Backend API 17.3.0 [Release Notes]
Keeper Connection Manager 2.19.2 [Release Notes]
Guest Mode feature for Connection Manager & RBI [Docs]
KeeperChat 5.8.7 [Release Notes]
Backend API 17.2.0 [Release Notes]
Admin Console 16.19.0 with Risk Management Dashboard [Release Notes]
CyberArk import script [PowerShell Docs and Commander import method]
Automator installation guide for Google Cloud Run [Docs]
Rotation scripts for AWS IAM User Access Key, Azure App Secret, Cisco Devices
Keeper Connection Manager example custom extension [Docs]
Browser Extension 16.11.0 [Release Notes]
Admin Console 16.18.7 with Security Audit Improvements [Release Notes]
Web Vault & Desktop App 16.11.3 [Release Notes]
Backend API 17.1.0 [Release Notes]
Browser Extension 16.10.0 [Release Notes]
Keeper Connection Manager 2.19.0 [Release Notes]
Remote Browser Isolation [Web Page | Documentation ]
TeamCity integration with Keeper Secrets Manager [Documentation]
Keeper Secrets Manager CLI 1.1.4 supporting folders and deletion [Release Notes]
Browser Extension 16.9.0 with a new UI [Release Notes]
Android 16.10.10 [Release Notes]
iOS 16.12.0 [Release Notes]
KeeperChat Release 5.8.5 [Release Notes]
iOS 16.11.1 [Release Notes]
Android 16.10.0 [Release Notes]
iOS 16.11.0 [Release Notes]
Admin Console 16.18.0 with New Password/Passphrase Policies [Release Notes]
Android 16.9.0 [Release Notes]
Web Vault & Desktop App 16.11.2 [Release Notes]
iOS 16.10.7 [Release Notes]
Android 16.8.60 [Release Notes]
Web Vault & Desktop App 16.11.1 [Release Notes]
Android 16.8.50 [Release Notes]
iOS 16.10.5 [Release Notes]
Web Vault & Desktop App 16.11.0 with Passphrase Generator [Release Notes]
Android 16.8.40 [Release Notes]
iOS 16.10.2 [Release Notes]
Android 16.8.30 [Release Notes]
Admin Console 16.17.1 [Release Notes]
Admin Console 16.17.0 [Release Notes]
Automator 3.2.1 [Release Notes]
Browser Extension 16.8.1 [Release Notes]
Backend API 16.12.0 [Release Notes]
Browser Extension 16.8.0 [Release Notes]
KCM Release 2.18.2 [Release Notes]
KCM Release 2.18.1 [Release Notes]
Google Workspace User and Group Provisioning with Google Cloud [Docs]
Browser Extension 16.7.6 [Release Notes]
Android 16.8.25 [Release Notes]
iOS 16.10.1 [Release Notes]
Android 16.8.20 [Release Notes]
iOS 16.10.0 [Release Notes]
Browser Extension 16.7.6 [Release Notes]
Android 16.8.10 [Release Notes]
Web Vault & Desktop App 16.10.12 [Release Notes]
Admin Console 16.16.0 [Release Notes]
Backend API 16.11.0 [Release Notes]
Browser Extension 16.7.5 [Release Notes]
Browser Extension 16.7.4 [Release Notes]
Automator v3.2 [Release Notes]
Android 16.8.0 [Release Notes]
Browser Extension 16.7.3 [Release Notes]
Web Vault & Desktop App 16.10.10 [Release Notes]
Browser Extension 16.7.2 [Release Notes]
Browser Extension 16.7.1 [Release Notes]
Android 16.7.10 [Release Notes]
Browser Extension 16.7.0 [Release Notes]
Automator v3.1 [Release Notes]
Retrieve credentials from the vault from the ServiceNow Management, Instrumentation, and Discovery (MID) Server integration. [Documentation]
Sign your git commits using an SSH key stored in your Keeper Vault. [Documentation]
CVE-2023-5217: Keeper Desktop 16.10.9 was published to address this Chromium vulnerability. Please update to the latest version [Release Notes]
CVE-2023-4863: Keeper Desktop 16.10.8 was published to address this Chromium vulnerability. Please update to the latest [Release Notes]
Admin Console 16.15.0 [Release Notes]
Browser Extension 16.6.4 [Release Notes]
Android 16.7.0 [Release Notes]
PSA integration with Gradient MSP [Documentation]
iOS 16.9.0 with UI update and large vault support [Release Notes]
Automatic password rotation of service accounts [Password Rotation]
Batch import for Keeper Connection Manager [Release Notes]
Android 16.6.60 [Release Notes]
Keeper MSP now available in the GovCloud / FedRAMP Authorized data center
Browser Extension 16.6.3 [Release Notes]
Web Vault & Desktop App 16.10.6 [Release Notes]
Web Vault & Desktop App 16.10.5 [Release Notes]
Keeper Connection Manager 2.17.0 [Release Notes]
Keeper Secrets Manager July 2023 updates [Release Notes]
Automated password rotation is available in GovCloud / FedRAMP data center
Browser Extension 16.6.2 for urgent Firefox issues
Web Vault & Desktop App 16.10.3 with Passkey management [Release Notes]
Browser Extension 16.6.0 with Passkey management [Release Notes] [Installation] [User Guide]
Backend API Version 16.10.0 [Release Notes]
Admin Console 16.13.2 [Release Notes]
Browser Extension Version 16.5.4 [Release Notes]
Backend API Version 16.9.9 [Release Notes]
All new Keeper Extension for Safari [User Guide]
SSO Connect On-Prem 16.0.7 [Release Notes]
Recovery Phrase [Read the Blog]
Web Vault and Desktop App Version 16.10.0 [Release Notes]
Admin Console Version 16.12.0 [Release Notes]
Android Version 16.6.50 [Release Notes]
iOS Version 16.8.1 [Release Notes]
Web Vault and Desktop App 16.10.2 [Release Notes]
Web Vault and Desktop App 16.10.0 [Release Notes]
Web Vault and Desktop App 16.9.0 [Release Notes]
Keeper Connection Manager 2.13.0 [Release Notes]
Android Version 16.6.40 [Release Notes]
Browser Extension 16.4.13 [Release Notes]
Backend API Version 16.8.12 [Release Notes]
Vault 16.8.9 w/ forced 1M PBKDF2 iterations [Release Notes]
Browser Extension 16.4.12 [Release Notes]
Keeper Connection Manager 2.12.0 [Release Notes]
Keeper Automator for Azure Container Service [Documentation]
Share Admin [Documentation]
Keeper Japan (JP) Data Center Region
Keeper Canada (CA) Data Center Region
iOS Version 16.8.0 with iOS16 TOTP Codes [Release Notes]
Android Version 16.6.20 [Release Notes]
SSO Connect On-Prem 16.0.6 [Release Notes]
Keeper Automator 2.2.1 [Release Notes] [Documentation]
PBKDF2 Iterations set to 1,000,000 rounds
Keeper Connection Manager 2.11.0 with support for PostgreSQL and SQL Server connection protocols. [Release Notes]
Backend API Version 16.8.7 [Release Notes]
MSP Consumption Billing [Documentation]
Browser Extension 16.4.7 [Release Notes]
Keeper Connection Manager Version 2.9.6 [Release Notes]
iOS Release 16.7.0 [Release Notes]
Admin Console Version 16.9.0 [Release Notes]
Vault Version 16.8.0 [Release Notes]
One Time Share for Android [Video] [Admin Guide] [End-User Guide]
FedRAMP Authorized (Moderate Impact) [Learn More]
Keeper Connection Manager 2.9.4 [Release Notes]
Keeper Automator 2.1 [Release Notes] [Documentation]
Keeper Connection Manager 2.9.3 with EC2 Discovery [Release Notes] [Documentation]
Vault Version 16.7 with offline edit and new UI [Release Notes]
iOS Version 16.6 featuring One-Time Share [Release Notes] [Documentation]
Keeper Connection Manager 2.9.0 [Release Notes] [Documentation] [Demo Video]
One-Time Share [Admin Guide] [End-User Guide] [Demo Video]
Vault Version 16.6.0 [Release Notes] with native support for M1 Mac
Android Version 16.4.0 supporting WebAuthn and NFC [Release Notes]
Browser Extension Version 16.4.0 [Release Notes]
Vault Version 16.5.0 [Release Notes]
Admin Console 16.6.0 w/ SSO On-Prem to Cloud Migration [Release Notes]
iOS version 16.4.0 supporting WebAuthn [Release Notes]
Android Version 16.0.5 [Release Notes]
Native App Filler with Macro and OCR [Documentation] [Demo Video]
Notices of recent security advisories and impact on Keeper
As new security advisories are published online for various systems, Keeper Security will post relevant information here.
Response to "AutoSpill" report from Black Hat EU 2023
A presentation at Black Hat EU 2023 discussed credential stealing on mobile password managers. Keeper was listed as an impacted application. Keeper has safeguards in place to protect against this issue as described below.
On May 31, 2022, Keeper received a report from the researcher about a potential vulnerability. We requested a video from the researcher to demonstrate the reported issue. Based upon our analysis, we determined the researcher had first installed a malicious application and subsequently, accepted a prompt by Keeper to force the association of the malicious application to a Keeper password record.
Keeper has safeguards in place to protect users against automatically filling credentials into an untrusted application or a site that was not explicitly authorized by the user. On the Android platform, Keeper prompts the user when attempting to autofill credentials into an Android application or website. The user is asked to confirm the association of the application to the Keeper password record prior to filling any information. On June 29, we informed the researcher of this information and also recommended that he submit his report to Google since it is specifically related to the Android platform.
Generally, a malicious Android application would first need to be submitted to Google Play Store, reviewed by Google and subsequently, approved for publication to the Google Play Store. The user would then need to install the malicious application from Google Play and transact with the application. Alternatively, the user would need to override important security settings on their device in order to sideload a malicious application.
Keeper always recommends that individuals be cautious and vigilant about the applications they install and should only install published Android applications from trusted app stores such as the Google Play Store.
A screenshot of Keeper's protection in place is displayed below. A user is prompted to trust the application from retrieving and filling the specified credentials. This security feature has been in place for several years and no additional updates are required.
This simple Android app demonstration can be viewed on Keeper's public Github repo: https://github.com/Keeper-Security/android_webview_autofill
To learn more about how to keep your smartphone safe, please visit: https://www.keepersecurity.com/blog/2022/10/13/how-to-keep-your-smart-phone-safe-and-personal/
If you have any questions, please email us at security@keepersecurity.com.
Detailed release notes for Keeper Security software on mobile, web, desktop and backend platforms.
Keeper Security posts all release notes, relevant JIRA ticket numbers and links to product documentation on every release.
Release notes:
SSO Connect On-Prem (SSO Cloud is part of Backend API)
Keeper is ISO 27001, 27017 and 27018 certified. Keeper is GDPR compliant, CCPA compliant, HIPAA compliant, FedRAMP and StateRAMP Authorized, PCI DSS certified and certified by TrustArc for privacy.
Security and encryption documentation is published online here.
HTTP/2 protocol denial of service
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Keeper Security's application servers are protected by AWS Shield which defends against DDoS attacks, and Keeper is not vulnerable to this attack. More info is posted on .
If you have any questions, please email us at security@keepersecurity.com.
Latest product and system updates
KeeperPAM: Secure and manage access to your critical resources, including servers, web apps, databases and workloads.
Admin Console 17.1.0 with KeeperPAM []
Automator Version 17.0 []
Browser Extension 17.0 []
iOS Version 17.0 []
Vault Version 17.0 []
Admin Console 17.0 []
Web Vault + Desktop App 17.0 []
Backend API Version 17.3.0 []
Keeper Connection Manager 2.19.2 []
Guest Mode feature for Connection Manager & RBI []
KeeperChat Version 5.8.7 []
Backend API Version 17.2.0 []
Admin Console 16.19.0 with Risk Management Dashboard []
CyberArk import script [PowerShell and ]
Android Version 16.10.10 []
Automator installation guide for Google Cloud Run []
Rotation scripts for , ,
Keeper Connection Manager example custom extension []
Browser Extension Version 16.11.0 []
Admin Console 16.18.7 with Security Audit Improvements []
Web Vault & Desktop App Version 16.11.3 []
Backend API Version 17.1.0 []
Browser Extension Version 16.10.0 []
Keeper Connection Manager Version 2.19.0 []
Remote Browser Isolation [ | ]
TeamCity integration with Keeper Secrets Manager []
Keeper Secrets Manager CLI 1.1.4 supporting folders and deletion []
Browser Extension Version 16.9.0 with a new UI []
Admin Console 17.1.0 with KeeperPAM []
Automator Version 17.0 []
Browser Extension 17.0 []
iOS Version 17.0 []
Vault Version 17.0 []
Admin Console 17.0 []
Web Vault + Desktop App 17.0 []
Backend API Version 17.3.0 []
Keeper Connection Manager 2.19.2 []
Guest Mode feature for Connection Manager & RBI []
KeeperChat Version 5.8.7 []
Backend API Version 17.2.0 []
Admin Console 16.19.0 with Risk Management Dashboard []
CyberArk import script [PowerShell and ]
Android Version 16.10.10 []
Automator installation guide for Google Cloud Run []
Rotation scripts for , ,
Keeper Connection Manager example custom extension []
Browser Extension Version 16.11.0 []
Admin Console 16.18.7 with Security Audit Improvements []
Web Vault & Desktop App Version 16.11.3 []
Backend API Version 17.1.0 []
Browser Extension Version 16.10.0 []
Keeper Connection Manager Version 2.19.0 []
Remote Browser Isolation [ | ]
TeamCity integration with Keeper Secrets Manager []
Keeper Secrets Manager CLI 1.1.4 supporting folders and deletion []
Browser Extension Version 16.9.0 with a new UI []
Keeper provides several systems for staying up to date with changes.
Please join Keeper's Slack Channel by requesting access from feedback@keepersecurity.com or contact your Keeper customer success representative.
If you require assistance, please open a ticket:
Enterprise customers please select "Business" or "MSP"
If this is an urgent issue, click on the "This is an emergency..." checkbox
Web Vault and Desktop App 17.1 []
Admin Console 17.1 []
Android 17.0 []
Automator 17.0 []
Browser Extension 17.0 []
iOS 17.0 []
Vault 17.0 []
Admin Console 17.0 []
Web Vault and Desktop App 17.0 []
Backend API 17.3.0 []
Keeper Connection Manager 2.19.2 []
Guest Mode feature for Connection Manager & RBI []
KeeperChat 5.8.7 []
Full
KeeperPAM: Privileged Access Manager Achieve visibility, security, access control and compliance across your entire organization.
Risk Management Dashboard Provides comprehensive security posture information covering end-user deployment, utilization, cloud configuration, and event monitoring