• Dhadelis
      link
      fedilink
      arrow-up
      1
      ·
      2 years ago

      Password manager services have highly valuable assets (thousands of passwords databases) and malicious actors will try to attack them. You’d be better using an off-line and local password manager like KeePassXC.

  • bkrl
    link
    fedilink
    arrow-up
    10
    ·
    2 years ago

    Only offline a database is safe.

      • Helix 🧬@feddit.de
        link
        fedilink
        arrow-up
        4
        ·
        2 years ago

        Yeah, that can easily be done by Syncthing. It’s basically online, but if you set up your own discovery server and disable relays for syncing, there’s virtually no way apart from completely breaking TLS to get the data.

  • dreamLogic@slrpnk.net
    link
    fedilink
    arrow-up
    6
    ·
    edit-2
    2 years ago

    Again? This is at least two times now. I switched to Buttercup because they just use a file you upload to any cloud service (you can even set up your own webdav if you don’t want any company having that file).

    Edit: Oh I see. This hack is worse, last time I heard it was leaked passwords and emails.

  • Dhadelis
    link
    fedilink
    arrow-up
    2
    ·
    2 years ago

    The same (and much worse) could happen to Bitwarden, at the end password manager services have highly valuable assets and malicious actors will try to attack them. When using a local password manager like KeePassXC, there’s not a single server storing thousands of passwords databases, just one stored locally and off-line in your computer, significantly reducing the risk.