This happened last year. It isn’t new news.

It’s clearly a risk, but if you have dozens of accounts and passwords it’s hard to come up with a feasible alternative.

If you don’t have to use your passwords from multiple locations, your hints are intelligible only to you, and you don’t leave the paper anywhere too obvious, this isn’t a bad solution.

Google has forgotten how to do competition.

It probably refers to advances in AI-driven surveillance on behalf of the US Government.

Yes, although it sounds like they haven’t finished fixing some of them:

All issues have been addressed by Bitwarden. Seven of which have been resolved or are in active remediation by the Bitwarden team. The remaining three issues have been accepted as intentional design decisions necessary for product functionality.

Edit: There’s more information about the specific threats and remediation steps in the PDF report linked at the end of the Bitwarden blog post:

https://bitwarden.com/assets/Kki4W785JIPOdFj6EeWB5/1e74e924febb4c6a5ad03eed23b92d23/pwmgr_paper__1_-combinedÂ__1_.pdf

Well the specific point here is that these companies claim that a server hack won’t reveal your passwords since they’re encrypted and decrypted on your local device so the server only sees the encrypted version. Apparently this isn’t completely true.

Why would they? It’s by far their biggest market. This is capitalism working as designed: sell to the companies running datacenters, then you and they can make money by renting computing resources at a premium to the peasants, and by spying on those peasants as they use it.

Don’t forget RAM.

They’re ignoring the law though. They’ll go after whoever they feel like attacking.

Well that’s disappointing.

It’s time to recalibrate my gradient on the big picture.

I guess this is AI-insider wit, but I’m so glad not to think or speak like these people do.

The only way to stand up to fascism is with solidarity in numbers. So let’s not let the Nazi ICE thugs intimidate anyone out of criticizing their pathetic white supremacist ways.

While we could do without Roblox and Discord, the bigger picture is that the internet is becoming a surveillance panopticon.

A little drone with a laser?

We need an open-source internet archive site that isn’t based in the USA and isn’t run by someone who’ll jeopardize the whole enterprise to attack someone’s blog. Archive.today is a great thing to exist on the Internet and I hope it continues, but we need one that we know isn’t going to host malware or vanish on us.

That said, I don’t appreciate the blogger’s urge to doxx whoever runs the archive. It’s exactly the kind of site where the admins would need security and anonymity so the US Government or another power doesn’t shut them down. If you doxx the owner you could kill the site.

It’s not being used because the real goal is to make it impossible to use the internet without handing over your ID, so that governments can know exactly what you do online. It goes along with all the attempts to ban or backdoor encryption including VPNs. They want to read every message and know who sent it and to whom.

Unless you lose your income, then all your subscription computer, games and data vanish in a puff of profit. But not to worry, you can buy a backup for… no sorry, you don’t have enough money because storage is unaffordable. So say goodbye to it all.

Seems like the only thing they redacted very diligently was the names of the perpetrators.

I wonder if they gave considered crowdsourcing this, having many people type in small chunks of the data by hand, doing their own character recognition? Get enough people in and enough overlap and the process would have some built-in error correction.