Skip to main content

Search

Items tagged with: Bitwarden

Not the first time nor the last. Staying on #LastPass is asking for trouble at this point. #BitWarden is better but using a centralized cloud provider remains a security risk still.
#Bitwarden #lastpass

Don't store #TOTP in #Bitwarden for your online accounts

prezu.ca/post/dont-use-totp-in…

Don't store TOTP in Bitwarden for your online accounts!

Since I’ve started working in Information Security space, I’ve been talking to a lot of people about the topics related to protecting ones identity online.
Patryk Cisek (https://prezu.ca)
#Bitwarden #totp

#Bitwarden has a vulnerability regression such that the master password and previously decrypted contents of an open vault can be inspected after locking the vault.

github.com/bitwarden/clients/i…


Vulnerability: Sensitive information is not purged from process memory on app lock or logout · Issue #3166 · bitwarden/clients

Steps To Reproduce Ensure that the vault contains secret items (e.g., logins, secure notes, etc.), and that "Close to Tray icon" is enabled; to minimize known risks, also ensure that vaul...
GitHub
#Bitwarden

Lo, thar be cookies on this site to keep track of your login. By clicking 'okay', you are CONSENTING to this.