Hire someone to do a security audit on your source code. Seriously, by being closed sourced and not having an audit, tons of people avoid using SafeIncloud and prefer other password managers in order to feel more safe about their data.
Justin Goldberg commented
Is the database encrypted locally before being sent to the cloud?
Antonio Cambule commented
Really? That's a no go! Secure your Apps!
Dmitry Kirillov commented
The dev absolutely needs to do this or else sadly, I too, am out.
So, has the developer made a response? Is he ignoring this security audit topic? I sure hope not. I sure hope i don't have to leave this because it just works, it's perfect. But come on sir, respond if you haven't. We deserve something.
can't believe this hasn't been yet, what's the wait. Just do it Dev, please. Do a go fund me, something, just make it happen.
It's a pitty. The application is offering exactly what I was looking for ...
(the following has been posted by a user in a German forum on 7th Sep 2017)
a) The master password can be read out in the RAM as plain string.
b) A pointer will always direct to the right adress in the RAM to get the string.
c) Also cloud login data is readable.
d) Source codes are not obfuscated. Hence the sourcecode can be easily read by using ILSpy.
The programmer didn't put any effort in avoiding reverse engineering (hacking)
Very good application.
But for me safety is also the first priority.
Danny Mehaffey commented
Wow! Such a shame, this is the best app I have found and absolutely love it. Hope they do it!
Didn't realize this, wow
Bear in mind, your app is not freeware you ask your customers to pay for it (and I really think it is worth to paid for it). So, on the other hand you should also invest in security and customer trust. One single successful hack into your app may destroy your entire business.
José Miguel Sánchez commented
Me too, looking for alternatives...
Pretty sure it was never done and probably never will. I am looking for alternatives.