Greetings everyone. I’ve noticed a change to the Firefox plugin that gives me a bit of a pause.
I keep my BitWarden vault locked, but logged in. I unlock, use autofill, then lock the vault when needed. In the past couple of weeks, I’ve noticed a difference in behavior:
When I unlock my vault for the first time in a Firefox session, it takes about 2-3 seconds to decrypt my vault upon entering my master password. This is expected based on the number of rounds, etc. I then lock my vault as I continue my session.
The 2nd time I unlock my vault during the same Firefox session, it unlocks immediately after entering my master password. There is no decryption delay. This makes me think that the lock process did not wipe the key from memory as the plugin was able to access it immediately without any decryption delay. If I close Firefox and relaunch, the 2-3 second delay returns for the first unlocking, but disappears for every unlock after.
This is different behavior than two weeks ago when it took 2-3 seconds every time the vault was unlocked. BTW - I’m not using a PIN or any other mechanism other than typing my master password to unlock.