Two different security companies were tasked by Bitwarden to "reinforce Bitwarden security and help customers comply with enterprise security requirements".
Bitwarden added support for Argon2 KDF recently to its products and also passwordless web vault logins.
Cure53 found no critical or important issues during the analysis of Bitwarden's network and infrastructure.
Follow
@ecksmc BitWarden has seen what happened to LastPass and doesn't want to be next. But the breach at LastPass wasn't due to their security. It was from external vulnerabilities and side channel attacks. They would be wise to address and assess these same areas that led to problems for LastPass in addition to verifying their internal security.
@danielbsmith Bitwarden have done audits before kinda annually for them to it
wouldn't say it had anything to do with LastPass breach other than maybe stepping the audit time-frame forward
and if any password manager service hasn't already started to look at external vulnerabilities that happened at lastpass and address things if found already I'd be shocked