Prior_Industry

Stephen Miller - “And this Sir is why we need to threaten and invade Canada”

Uninvited from the opportunity to give me a 1 billion dollar bribe. Must hurt.

I have seen Beasant discussed as well regarded on wallstreet. Yet whenever I hear the guy speak he sounds like a complete moron. Then I discovered he took a fund worth 4 billion and turned into a 557 million dollar fund and I realised there was evidence to back up him being a total moron.

So say for example that someone manages to get into a position (or the Bitwarden Devs) to alter the code for the Bitwarden Chrome extension and compromise it, this code is then deployed from their update service to your device. You then use the compromised extension to login to your vault, at that point your vault contents could be extracted for a third-party to view.

I just want to say, this was something I saw another user put up as a risk on another thread a few months back, so I don’t know if that’s actually feasible to achieve or what protections Bitwarden have in place to stop such a thing happening.

Even so, I still use Bitwarden. If you’re getting that deep into the weeds, unless you are writing all the code yourself or interrogating the code others put up before updating your system this sort of thing would always appear to be a risk.

The only concern I have seen written is if someone altered how the bitwarden client / extension itself works to expose / extract your vault. Not sure how feasible that would be.