Search
Items tagged with: Bitwarden
Don't store #TOTP in #Bitwarden for your online accounts
prezu.ca/post/dont-use-totp-in…
Don't store TOTP in Bitwarden for your online accounts!
Since I’ve started working in Information Security space, I’ve been talking to a lot of people about the topics related to protecting ones identity online.Patryk Cisek (https://prezu.ca)
#Bitwarden has a vulnerability regression such that the master password and previously decrypted contents of an open vault can be inspected after locking the vault.
github.com/bitwarden/clients/i…
Vulnerability: Sensitive information is not purged from process memory on app lock or logout · Issue #3166 · bitwarden/clients
Steps To Reproduce Ensure that the vault contains secret items (e.g., logins, secure notes, etc.), and that "Close to Tray icon" is enabled; to minimize known risks, also ensure that vaul...GitHub