Ask HN: Anyone else Bitwarden account being attacked
My Bitwarden is being attacked. I get emails from Bitwarden about someone trying to access my account. Emails look legit.
Anyone else experiencing this today?
Anyone else experiencing this today?
17 comments
[ 0.21 ms ] story [ 20.2 ms ] threadIf they already had the data, would they be using the web account login page?
And yes, if I had a bitwarden vault I wanted to crack I'd absolutely be using the web account login page. The latter is more likely to yield to have some vulnerability than the at-rest encryption, which when exploited would yield the password; or it could scare the target into falling into my PITM attack, or otherwise act irrationally.
What type of vulnerability could the web interface have that the offline password file wouldn't? Unless they have a backdoor. The speed difference would also be tens or millions of times faster.
Depending on your threat model, I suggest using a unique email address to register your password manager account. Harden that email account and set up email forwards if it's separate or just give the password manager a unique name for your catch-all email address (I believe iCloud offers something similar to this as well).