Today I wanted to share a problem I’m facing with the BW chrome extension, which for me is a massive security hazard.
When I am unlogged from the extension, the email is remembered and suggested and I didn’t find a way to remove it.
While this represents a security problem in its own right, a mistake I made makes it even worse: thinking my vault was only locked and not logged off, I typed my Master password in the email field and it is now suggested, in plain characters, everytime I log off.
Has anyone encountered the same issue? Maybe found a solution to erase these suggested emails in the extension?
Hi David, thank you for your quick replay.
I had tried uninstalling the browser extension to no avail, but deleting my data in Chrome parameters did the trick.
Thank you so much for your help
Have a good day
To be clear here, with Chrome your passwords are kept in the browsing data of the app AND the signed-in Google Account. I’m not sure, but this is potentially still recorded in account settings.
If you’re using Bitwarden’s Autofill, I recommend shutting off Chrome’s autofill. As you found out, it is insecure. Usually I always caution people to back up the chrome autofill to bitwarden in case there’s something important, but…
1-1/2 years later, some autofill function is still placing my email in the Chrome Extension before I logged in. Still a security hazard.
All Chrome Autofill features turned off and cleared. History cleared for all time - source of autofil unknown. Not sure what “deleting my data in Chrome parameters” precisely meant in that case, but apparently my parameters do not appear to be deleted.
