• TrickDacy@lemmy.world
    link
    fedilink
    arrow-up
    1
    arrow-down
    3
    ·
    1 year ago

    I’m unaware of 1password ever getting hacked.

    Even if they did, there’s some really smart technology at play here. I think your paranoia here is unjustified. I felt the same way until I read about their technology. At that point I felt comfortable using their service.

    • GissaMittJobb@lemmy.ml
      link
      fedilink
      arrow-up
      3
      ·
      1 year ago

      I mean, just three days ago we had this incident, which is probably what they are referring to: https://blog.1password.com/okta-incident/

      Anyway, iirc, 1password is architected in a way where a breach won’t actually disclose the passwords of their users, but I’m too tired to do the requisite double-checking to verify it

    • vsis@feddit.cl
      link
      fedilink
      English
      arrow-up
      2
      arrow-down
      1
      ·
      edit-2
      1 year ago

      I’m unaware of 1password ever getting hacked.

      https://cybersecuritynews.com/1password-hacked/?amp

      I think your paranoia here is unjustified

      You are right in a way. I always assume company sysadmins have access to company data, even if they say the opposite, and I always assume there are undisclosed data leaks. Which may seem a little paranoid.

      It’s like closing your car’s door when leaving it alone: Is it paranoid to assume that always there are someone willing to steal stuff?

        • vsis@feddit.cl
          link
          fedilink
          English
          arrow-up
          1
          arrow-down
          1
          ·
          1 year ago

          1password employees don’t have access to the data let alone anyone else.

          That’s a common good practice.

          It’s still good idea to assume the opposite.

          If you can see plain text passwords, some malicious actor at their side can too. No matter if it’s encrypted at rest.

          • TrickDacy@lemmy.world
            link
            fedilink
            arrow-up
            1
            arrow-down
            1
            ·
            1 year ago

            No, I don’t think it’s healthy to move through life in such a paranoid state. If I thought that, I wouldn’t use a password manager and that would leave several problems unsolved, chiefly I would only be able to remember a couple passwords, opening my identity up for hacking several orders of magnitude likelier to actually happen than 1password’s entire technology stack failing at its one job.