Bitwarden design flaw: Server side iterations
we look at how Bitwarden describes the process in their security whitepaper, there is an obvious flaw: the 100,000 PBKDF2 iterations on the server side are only applied to the master password hash, not to the encryption key. This is pretty much the same flaw that I discovered in LastPass in 2018
https://palant.info/2023/01/23/bitwarden-design-flaw-server-side-iterations/
some good advice on
https://community.bitwarden.com/t/increasing-the-default-number-of-pbkdf2-for-existing-accounts/49550/17
if you find the issues affect you