Level up your business security with free, on-demand training and certification. Explore 1Password Academy today →
1Password's stance on Canada's Lawful Access Bill C-22?
I'm sorry if these touches in a topic that bends to the political, but this is something that I don't think we as keepers of people's most important and sensitive information should be just standing by and not getting into the discussion before it is too late. As a Canadian and a 1Password being a Canadian based "Electronic Service Provider", based on the law's very loose definition of what an ESP is, I have very grave concerns that just like Apple and Meta the data that is contained within 1Password could be subject to this "unlawful" bill. Even my own company as small as it may be is caught up in the legal definition of an ESP. There is no scope at what an ESP is and what the government has defined and what their level of Systemic Vulnerability will be. 1Password in its current wording is caught up in this definition The powers can be extended through regulations an minimal future debate No Guardrails Secret ministerial orders requiring system modifications or re-engineering that could be demanded of 1Password with a gag order No mandatory oversight Limited ability for 1Password to challenge orders or redefine vulnerabilities Extensive Realtime access & retention 1Password would have to build the capability (at its expense) the ability to intercept, decrypt & hand over data Access to metadata, geolocation, in realtime and stored for retroactive access for all users for up to one year (with talk from law enforcement of wanting this to be even longer in the future). Basically eroding privacy and security, and weakens encryption and creates a permanent surveillance state power and, because of the conflicting sections of the Bill, the "so called" protections can be overridden by a secret request, 1Password won't be allowed to ever tell us that it had to do any of this for the government, law enforcement, or the Canadian security (spy agencies). Now I hear that because of the growing pushback on this bill, that the debate on this bill is going to be now limited to 3 days and a goal of having this law by the end of the month. Has your legal team been studying this bill? What is the 1Password stance on this invasive bill that even Apple, Meta and US Congress are voicing their concerns of this bill in its current form? If Both Apple and Meta, with huge legal and resources, are concerned that this could force them to weaken encryption, how is 1Password a Canadian company going to be able to ethically stand ground to weakened privacy, security and increased enduring real-time surveillance? I remain unconvinced that all the data and access that we all store within 1Password would not be a prime target for access requests. All we have is a verbal promise that the government would never make these kinds of requests. If not now, as Micheal Geist says, in the setting ready and waiting for a "Turnkey Totalitarianism"? I think this warrants a response and a position from 1Password before the company no longer has the legal right to do so, don't you? https://www.michaelgeist.ca/2026/05/wilful-blindness-how-the-lawful-access-charter-statement-skips-bill-c-22s-most-constitutionally-vulnerable-provisions/ https://openmedia.org/press/item/civil-society-to-parliament-kill-bill-c-22
Bitwarden CLI Compromise
The thing that really worries me nowadays about using my computer is supply-chain attacks. I have used computers since Windows 3.1 in the 1990s (currently MacBook Pro M1) and have always been safe and sensible when using / running software. However, these supply chain attacks are extremely concerning for me because I can now get infected by something no matter how safe I am... AND when downloading software from official sources. I know that 1Password is designed very well from the blog posts and articles I've read from the company over the years. However, I'm very nervous downloading / updating / running ANY software now. As LastPass has been hacked multiple times in the past, and now Bitwarden, it would be good if someone from 1Password could write something to address this changing threat landscape.RBM: Cybersecurity Hot Takes 2025
Hey everyone! 👋 A new episode of 1Password's Random but Memorable podcast has dropped! Listen now Watch on YouTube Episode summary Love a hot take? 🔥 You’re in luck! We’re back with a special end-of-year treat: a rapid-fire round of cybersecurity hot takes guaranteed to start arguments in your group chats and hijack at least one Slack thread. 💬 The team weighs in on bold claims like “Passwords will finally die in 2026” and “AI will solve more cybersecurity problems than it causes next year.” Then we spice things up with hot takes from around 1Password — covering everything from CAPTCHAs (a punishment?) to VPNs (are they even doing anything?) to whether New Year’s security resolutions ever last past January. 🤔✨ We round out the episode with a listener question in #Ask1Password. Plus, it wouldn’t be a holiday episode without a bit of nonsense, so we’ve revived an old fan-favourite game from the Random but Memorable vault. Which hot take did you agree with, and which one missed the mark? Let us know in the comments below!
1Password for Atlas (for Mac users only)
While the staff are still celebrating the Usonian Thanksgiving Day, as no doubt mandated by management, and not to preempt the imminent post in Announcements where discussion belongs, folks who cannot get enough AI/LLM/GPT magic when browsing the web on (only) their Apple Mac devices will not want to wait to learn that The new 1Password onboarding experience with Atlas was designed for speed and simplicity. and more in the new blog post, Simplifying credential security on ChatGPT Atlas [Not yet affiliated with Charles Atlas].Random but Memorable 16.0: Avoid Black Friday scams and shop safely online with Simon Miller
Hey everyone! 👋 A new episode of 1Password's Random but Memorable podcast has dropped! Listen now Watch on YouTube Episode summary Black Friday season is upon us! 🛍️ This week, we’re joined by Simon Miller from Cifas, the UK’s leading fraud prevention service, to unpack the latest online scams. He shares essential tips to help you stay safe online and protect your hard-earned cash while shopping online this holiday season. 💳🔒 In Watchtower Weekly, we dive into why weak passwords are still haunting us in 2025 (yes, even “12345” is alive and well), and what the Louvre Museum can teach us about password hygiene. 🖼️🙈 No time to watch or listen? Read the transcript on 1Password Community You can chat about anything discussed in the episode in the thread below!Random but Memorable 15.5: How cyber warfare really works with Hayley Benedict
Hey everyone! 👋 A new episode of 1Password's Random but Memorable podcast has dropped! Listen now Watch on YouTube Episode summary What does cyber warfare really look like behind the headlines? This week, Roo sits down with Hayley Benedict, a cyber intelligence analyst at RANE, to explore the evolving world of digital conflict. From hacktivists to disinformation specialists, Hayley shares how nation states, criminals, and ideologically driven groups are blurring lines — and why data theft, disruption, and doubt remain the weapons of choice. 🎙️🛰️ In Crash Course, we cut through some industry jargon to explain Zero Trust: never assume, always verify. And in Watchtower Weekly, ransomware gets a 2025 upgrade. Want to chat about anything we discussed on the episode? Let us know in the thread below!World Password Day: Giving Back & Looking for Your Favorite Nonprofits
In honor of World Password Day on May 1, 1Password is making donations through our 1Password for Good program to two organizations focused on teaching kids about online safety. We will be donating $5,000 USD each to KnowledgeFlow Cybersafety Foundation in Canada, and Internet Matters in the UK to support their cyber safety programs. Both organizations have missions dedicated to creating a digital world that is safe for children. As we make plans for the rest of 2025, we’d love to hear from the Community about other organizations 1Password should consider supporting. Do you have a favorite nonprofit that helps kids stay safe online or teaches them about technology? Share them below so we can learn more about them!Join founder Sara Teare and Co-CEO Jeff Shiner for a fireside chat
Hi everyone, In case you missed the announcement, here's one final reminder about 1Password's upcoming fireside chat: Join 1Password's founder, Sara Teare, and Co-CEO, Jeff Shiner, as they share their thoughts and vision for the future of the new 1Password Community. In this webinar, you'll learn how Administrators, Developers, and all 1Password customers can leverage the new 1Password Community to connect, contribute, and learn together. Come celebrate this milestone moment with the 1Password team and get a sneak peek into what's next for our vibrant community! 🗓 Date: Tuesday, February 25th 🔗 Register now to secure your spotDevice Trust webinar and Q&A
Hello 1Password Community, If it isn’t on your calendar yet, there’s still time to register for our Thursday webinar How 1Password secures managed and unmanaged devices to learn how 1Password Device trust enables your team to work the way they want — on company owned or BYO-devices — while ensuring those devices meet security standards. Whether you’re able to attend the webinar live or not, we invite you to add questions related to 1Password Device Trust below and our presenters 1p_micah and Scott_1P will answer them over the remainder of the week.
