Comment

gaylord_fartmaster@lemmy.world ⁨3⁩ ⁨weeks⁩ ago

Someone manages to maliciously sneak username and password fields onto a site that store what is entered as soon as it’s typed. They don’t even have to be visible to the user and bitwarden will fill them in as soon as the page loads.

source

Sort:hotnew top

Serinus@lemmy.world ⁨3⁩ ⁨weeks⁩ ago
Bitwarden will only autofill if the domain matches.

source
- gaylord_fartmaster@lemmy.world ⁨3⁩ ⁨weeks⁩ ago
  Right, “maliciously sneak”, as in they’ve either gained access to make changes to the site ditectly, or they’ve found a way to inject their scripts to steal creds.
  
  source
  - Serinus@lemmy.world ⁨3⁩ ⁨weeks⁩ ago
    And how is that any different from not having a password manager?
    
    source
    gaylord_fartmaster@lemmy.world ⁨3⁩ ⁨weeks⁩ ago
    
    They don’t even have to be visible to the user and bitwarden will fill them in as soon as the page loads.
    
    I guess you didn’t read most of the comment.
    
    source
    -> View More Comments