Two different security companies were tasked by Bitwarden to "reinforce Bitwarden security and help customers comply with enterprise security requirements".
Bitwarden added support for Argon2 KDF recently to its products and also passwordless web vault logins.
Cure53 found no critical or important issues during the analysis of Bitwarden's network and infrastructure.
@ecksmc it's been published by Bitwarden, though. Would you say the independent auditors are trustworthy entities?
@ayankdownunder yes
imo these companies don't have anything really to gain by bullshiting they have more to gain by telling the truth it's their business model after all
if Bitwarden, or any company, then doctored any report it wouldn't look good on them as the audit company would no doubt call them out on that
@ecksmc excellent, seriously, thank you for your thoughts on this, and for sharing the information.
Bitwarden has been getting some odd opinions around it recently, and I was getting nervous about using it.
personally I don't use Bitwarden anymore no reason really other than a personal choice to use another password manager
that said Bitwarden is probably one of the better services to use
@ecksmc 🥂 it's definitely not the best out there, and has its issues, but I've invested enough time in it, so I'll stick for now.
Thanks again!