Respond from a dev https://reddit.com/r/Bitwarden/comments/10jj6fk/_/j5mjqbx/?context=1
So far, in my opinion, all of these recent isssues/vulnerabilities points to a simple conclusion. Have a strong master password.
The author made a reply concerning Tavis Ormandy’s post about password managers https://infosec.exchange/@WPalant/109739825281157041
thank you
Would changing the iteration help much in this case?
Thank you.
I do wonder why ESET decided just now to detect it. Kerish isn’t a new software. ESET should have known of its existence for many years and I...
Emsisoft also detected it as well. But they recently corrected the false positive.
Yeah. Haven’t fully tested but I notice this didn’t work while using a password manager. So it would be nice if they could improve so it’s more...
Well, from my opinion, it’s because the technology in HMP.A is much more advance and relies on being real-time while HMP is an on-demand scanner....
Have you tested ESET?
As long as those companies don’t do the same mistake Lastpass did, even if they do get hacked and malicious people get a copy of people’s vault,...
To be honest I don’t know. I just remember people mentioning this as sort of an alternative to Keepass.
Never bothered with this myself. But if it interest you Bitwarden gives you the option to self-host...
I don’t mind that much if a security software uses MotW as way to enhance a little their detection capabilities. However the key point is...
A lot of reports.
Not Rasheed here. But I want to say even if additional security tools may protect some users from this bypass. It doesn’t protect the average user...
A user over on Malwaretips reported that So this certainly seems like something Microsoft needs to fix
Cruelsister’s test are very different from the standard youtube tests you may find online.
is the free version of this product still a whitelist application?
So the malware detects these names. But the article isn’t very clear regarding Kaspersky and Sophos bypass I assume it’s the point stated as...
has the algorithm gotten better? Like do you get recommended things that are actually for you?
They state they won’t collect
Unfortunately, there was nothing there that felt definitive User there didn’t state what vendors detect it. Not all AVs are equal some are more...
A little off-topic. But I want to mention an old test series Cruelsister did. The test was about how effective AVs are at protecting users at...
Separate names with a comma.
