Getting started with 1Password for your growing team, or refining your setup? Our Secured Success quickstart guide is for you.
Phishing email attempt - be careful out there
I just received this phishing email and thought I would share it with the community as a reminder to stay safe and always inspect before you click. I already forwarded the email to 1password (with headers) in addition to reporting it to the abuse email of the campaign service it came from. Not sure how they got ahold of the email though.
Share tips, win swag!
Hi 1Password Community, One of the great things about bringing everyone together here is the collective knowledge of having thousands of 1Password users in one place. We want to tap into that expertise by asking everyone to share their best tips and tricks for any 1Password product. Something that’s old news to you might help a new user save time and energy! To make it more fun, we’ve made it into a game! Reply to this thread with your favorite tip and you’ll be entered into a drawing to win an assortment of 1Password swag. For every tip you submit, you get one entry into the drawing (maximum of five entries into the drawing). When submitting your tips, please use the following format: Tool: Passage/Device Trust/Trelica/Enterprise Password Manager/Personal Password Manager Platform: Web, iOS, Android, Mac, Windows, Linux Tip: Reply to this thread before March 11th, 2025 to be entered into the drawing.Random but Memorable 14.7: Malicious Pottery Service Provider with Tarah Wheeler
Hey everyone! 👋 A new episode of 1Password's Random but Memorable podcast has dropped! Listen now Watch on YouTube Episode summary What’s the best thing small businesses can do to improve their security posture? 👩💼📊 Our guest this week, Tarah Wheeler, breaks down why small businesses are vulnerable to hacks, breaches, and ransomware, and shares some tips for choosing the right managed service provider (MSP). In Watchtower Weekly, we lift the lid on “SignalGate” and the rise of a new QR code phishing technique: Quishing. 🐟🤷♂️ Plus, we walk through 1Password’s Travel Mode feature in #Ask1Password. ✈️📱 You can read a transcript of the interview here! Want to chat about anything we discussed on the episode? Let us know in the thread below!Random but Memorable 14.5: Triple Hollywood Movie Sabotage with Ralph Echemendia
Hey everyone! 👋 A new episode of 1Password's Random but Memorable podcast has dropped! Listen now Watch on YouTube Episode summary Why does Hollywood get hacking wrong in so many movies and TV series? 🎬🎥 In this episode, we invite Ralph Echemendia to share his wild stories working in Hollywood as a technical supervisor on award-winning projects like Mr. Robot, Snowden, Savages, and Nerve. We also shine a spotlight on the work Ralph is doing to help the world’s most influential record labels and movie studios protect what they’re working on. In Watchtower Weekly, we learn how a resentful developer used a kill switch to sabotage employer's systems. 👨💻 You can read a transcript of the interview here! Want to chat about anything we discussed on the episode? Let us know in the thread below!
Game Over Scenarios - What To Do in Breach
Hi, Going through some paranoia I’ve been running through some “what if” scenarios about 1Password and figuring out: How stressed I should be in each case What to actually do if it happens Here’s my current thinking — would love feedback: Category 1 – Vault Not Compromised Examples: Someone steals 1Password’s servers but not my Secret Key or master password My phone/laptop is stolen but locked with a strong passcode and biometrics Stress: Low Actions: Unlink stolen devices (only helpful if they are online) Remote wipe if possible No urgent password changes — maybe rotate some over time for peace of mind Category 2 – Vault Potentially Compromised Examples: Malware on my device (could capture my master password next time I unlock vault) Device stolen and unlocked. I thinking something like a phone snatch. Weak device password that could be guessed Stress: Medium–High Actions: Stop using compromised device Change vault master password + Secret Key Immediately change Tier 1 account passwords (email, bank, primary cloud logins) Rotate other accounts over time Category 3 – Vault Definitely Compromised Examples: Attacker knows both master password + Secret Key They have an export or backup of my vault data Stress: High Actions: Immediately change Tier 1 account passwords first Then Tier 2 (social media, messaging, secondary financial) Then the rest Closing thoughts: Avoid malware — it’s one of the few scenarios no password manager can save you from Device theft is more common, but if the vault is locked and your passcode is strong, you’re probably fine. Would you remote wipe straight away or wait to see ifs handed in? The “$5 wrench” attack… well, not much to do there Keep a list of Tier 1 accounts handy for emergencies so you know what to change first Offline-only vault on a USB stick could be more secure, but a lot more inconvenient — I only access password in a secure location. If I'm on the road and no one at home to give me a password, then what. Would appreciate some input to get over the paranoia hahaRandom but Memorable 14.6: Security Agents Protecting Adolescence with Chris McCarty
Hey everyone! 👋 A new episode of 1Password's Random but Memorable podcast has dropped! Listen now Watch on YouTube Episode summary This episode we meet Chris McCarty, the inspirational student and founder of Quit Clicking Kids, an organization advocating for children's rights in the digital age. Learn about the rise of “sharenting” and how Chris is fighting for legislative changes to safeguard minors from exploitation on social media platforms. In Watchtower Weekly, we unpack Adolescence (the Netflix show everyone can’t stop talking about) and how AI agents are being used to help overwhelmed cybersecurity professionals. 🤖🤷 You can read a transcript of the interview here! Want to chat about anything we discussed on the episode? Let us know in the thread below!
