Password manager articles

bitwarden password hacking vulnerability password manager credentials flashpoint

Bitwarden's password manager browser extension has a known exploit it hasn't addressed in five years (Update: fix coming)

PSA: Hackers can steal your username and password for a website using an embedded iframe. It's a weakness for all password managers, and most have addressed the flaw in various ways, including issuing warnings when users are on a login page with an iframe or not trusting subdomains. Bitwarden is the sole exception, having determined in 2018 that the threat was not significant enough to address.