Strangely, My web login no longer works as it is asking for using an authenticator app. I do not have one set up. And do not remember where I put my recovery codes.
Any suggestions on what can be done to gain access via web so that I can set up a 2FA?
I do remember my password, which has continued to work on browser extension. It still does. But my iphone app stopped working (again same reason - no 2FA). and web login also does not work.
Using the browser extension, immediately create a vault export in “.json” format — not “.json (Encrypted)”. You can download such an export by going to Settings and then scrolling down until you see the Export Vault link in the “Tools” section.
Whatever the reason that you are encountering the 2FA request, the fact is that if you do not have the TOTP secret and you do not have the 2FA Recovery Code, you will not be able to log back in to any of your Bitwarden apps. This means that if/when your browser extension becomes logged out, you will forever have lost all the contents of your vault.
With the JSON export, you can start a new Bitwarden account and import your old data.
Please be advised that the JSON export does not contain any file attachments that you may have uploaded to your vault. If you have stored such file attachments in your vault, you will need to download them individually to preserve them. You can find vault tiems that include file attachments by using the search bar to enter the following expression:
>attachments:*
After you have exported and saved all of the data from your vault, you can delete your old account following the instructions available here:
When your old account is deleted, you can re-use your existing email address to register for a new account.
If you didn’t set up it, somebody else might have set it up. You may want to:
There seems to be credential stuffing attacks on BW accounts going on.