Forum Discussion

Former Member

3 years ago

Security Issue with Autofill?

Hi Everyone, i came across an article on https://www.bleepingcomputer.com/ in regards of security issues with Bitwardens Auto-Fill Feature. Now I'm curious if we have a similia issue with 1Passwor...

browser extension

Former Member

3 years ago

Hi steph_giles ,

thanks for your Response. In the original analysis of Flashpoint they also mention an attack vector where it is possible to crab the credentials after a user manually autofill the credentials.

https://flashpoint.io/blog/bitwarden-password-pilfering/

As specially I would like you to have a look at the following part of the Report:

"As mentioned before, if the ‘Auto-fill on page load’ option is enabled, no further user interaction is required. However, we confirmed that if the user fills a login form via the context menu, forms embedded in iframes are filled as well."

Is that something where 1Password also protects from?

Kind regards
Stefan

Forum Discussion

Security Issue with Autofill?

Featured discussions

November at 1Password: the Access-Trust gap, planning your estate, and an updated unlock experience

Recent discussions

Feature Request: Show Original Contributor of Items in Shared Family Vaults

Has something changed: http:// not filling in any more?

Emergency access - people I trust that may ask to access my account in case of an emergency

Cancelled Account, But Got Billed for 0.95 Cents

1Password error message on Start up