I’m thinking about moving to bitwarden (self hosted vault warden) for password management. Currently paying for 1Password.

What are some “gotchas” that I should watch out for? I’m planning to have it run on my synology nas in a docker container for now.

#passwordmanagement #butwarden #1password #selfhosted #selfhosting

New ETH Zurich study found 25 attacks against Bitwarden, LastPass & Dashlane that break "zero-knowledge encryption" promises — from vault compromise to password recovery. All vendors are patching. 🔗https://zurl.co/c6yST #Cybersecurity #PasswordManagement #InfoSec #vCISO #CISO
Study Uncovers 25 Password Recovery Attacks in Major Cloud Password Managers

Academic study finds 25 attack methods in major cloud password managers exposing vault, recovery, and encryption design risks.

The Hacker News

New videos this week on Terminal Tilt!

Tomorrow: Part 2 of the security series. We’re talking #PasswordManagement Specifically how to stay secure without giving your data to Big Tech.

Thursday: I’m reviewing the #DivoomPixoo64 It is cool hardware, but how does it hold up for someone who cares about privacy?   

#Linux #OpenSource #FOSS #Privacy #TerminalTilt

Bitwarden introduces “Cupid Vault” — a 2-user shared Organization vault available on the free plan.

Security considerations:
• End-to-end encryption
• Vault isolation from personal storage
• Fingerprint phrase verification (anti-ATMIT enrollment control)
• Bidirectional sharing
• Revocable access

Limitations: 2 users, 2 collections. No RBAC granularity (reserved for paid tiers).

Question for practitioners:
Is secure shared vault architecture preferable to federated identity or delegated access models for small trust groups?

Source: https://www.bleepingcomputer.com/news/security/bitwarden-introduces-cupid-vault-for-secure-password-sharing/

Join the discussion below.
Follow @technadu for actionable security insights.

#InfoSec #PasswordManagement #ZeroTrust #Encryption #AccessControl #CyberDefense #Authentication #SecurityArchitecture #BlueTeam #PrivacyEngineering

ReMemory Is The Amnesia-hedging Buddy Backup You Didn’t Know You Needed

What would happen if you lost your memory, even partially? With so much of our lives being digital, forgetting your passwords (or the master key to your password manager) could be disastrous. Haunt…

Hackaday

Gli attacchi di phishing si evolvono.
L'IA li rende più sofisticati.

1Password introduce avvisi
quando si tenta di incollare
credenziali su siti sospetti.

Una protezione in più
contro le truffe online. 🔐

#cybersecurity #phishing #passwordmanagement

🚨 Product update: Our upcoming Android, iOS and browser extension releases will make it easy to move between multiple accounts on one device. These releases will roll out over the coming days and introduce several additional improvements, so be sure to update for seamless, secure access wherever you go.

#KeeperSecurity #Cybersecurity #MobileApp #PasswordManagement

👨‍🔧🔒 Behold the revolutionary #innovation no one asked for: Yet Another Over-Simplified Secret Storage Solution™. Because, of course, managing sensitive data should be as easy as forgetting your password. 🙄✨
https://github.com/illarion/lockenv #secretstorage #cybersecurity #simplification #passwordmanagement #HackerNews #ngated
GitHub - illarion/lockenv: Simple, password-based encrypted vault for .env and infrastructure secrets. Like git-crypt or sops, but dramatically simpler. Ideal for small teams and IaC workflows

Simple, password-based encrypted vault for .env and infrastructure secrets. Like git-crypt or sops, but dramatically simpler. Ideal for small teams and IaC workflows - illarion/lockenv

GitHub

Một người dùng homelab đã "sốc" khi đếm được 68 thông tin đăng nhập khác nhau (Docker, API keys, tài khoản người dùng). Để tránh "thức dậy lúc 3h sáng sửa lỗi", họ đã hợp nhất tất cả thành 1 mật khẩu chính với OIDC và chứng chỉ JIT. Bạn có bao nhiêu loại thông tin đăng nhập trong hệ thống của mình?

#Homelab #Security #Credentials #PasswordManagement #Selfhosted #BảoMật #MậtKhẩu #HomelabVN

https://www.reddit.com/r/selfhosted/comments/1pb5n0r/i_just_counted_68_different_credentials_across_my/