Bitwarden issue

Note: Your question may already be answered in the Bitwarden Help Center.

So again how safe is Bitwarden?

Then why did I get an alert that my Bitwarden account was accessed by an Android device…with IP from Brazil??

Not cool!.. Hence not sure if Bitwarden has compromised my information.

Even if they would like to do that (something I do not believe) how should they have done this ?

“Vault data can only be decrypted using a key derived from your master password. Bitwarden is a zero knowledge solution, meaning you are the only party with access to your key and the ability to decrypt your Vault data.”

Source: Vault Data | Bitwarden Help & Support

1 Like

Not sure its simply a User Id and Password (Master key) at the end of the day…for someone to get access to it, isnt it?

And looks like someone actually did it…I deauthorised all sessions & then changed my password through web, but noticed that I was not thrown out of the app on my iphone (which should happen automatically), but instead I had to manually log out.

So whoever accessed my account got my information…

If I was not thrown out of the app on my phone, I am 101% sure the hacker was also not thrown out.

This is horrible now.

It is not if you protect your account using 2FA.
For details see here: Field Guide to Two-Step Login | Bitwarden Help & Support

Using Deauthorize Sessions can take up to 1 hour for it to take effect on all devices.

Source: Revoke app access - #2 by tgreer


Does Bitwarden actually have a help centre??? Contact Centre??

Feels like horrible app with no service at all,. No one to address anything :-1:

How about this ?

1 Like

Thanks @Peter_H for the quick replies!

@Karen_Fernandes the Bitwarden team is available and happy to help, 24/7 at our contact page. You absolutely did the right thing by changing credentials, and I sincerely hope that your vault data wasn’t compromised by an outside vector. 2FA is highly recommended, and our apps now support FIDO2, so an additional level of security is available.

I’m going to close this topic so we don’t get too off base, but I’ll leave it up for folks who may have the same questions.