Leo to Technology@lemmy.worldEnglish • 8 months ago1Password discloses security incident linked to Okta breachwww.bleepingcomputer.comexternal-linkmessage-square46arrow-up1267arrow-down18cross-posted to: technology@lemmy.mlhackernews
arrow-up1259arrow-down1external-link1Password discloses security incident linked to Okta breachwww.bleepingcomputer.comLeo to Technology@lemmy.worldEnglish • 8 months agomessage-square46cross-posted to: technology@lemmy.mlhackernews
minus-squareAnoxydre [they/them]linkfedilinkEnglish27•8 months agoExactly. Accounts are locked with both password and encryption key. The latter is not known by 1Password.
minus-square@tippl@lemmy.worldlinkfedilinkEnglish4•8 months agoTo be accurate, they don’t know either. A login key and a decryption key are derived from password and secret key client-side.
Exactly. Accounts are locked with both password and encryption key. The latter is not known by 1Password.
To be accurate, they don’t know either. A login key and a decryption key are derived from password and secret key client-side.