Shellshock is bad, unique passwords are good

A new security bug, commonly known as Shellshock (Officially CVE-2014-6271, is bad. It is fair to say that a large number of servers (particularly web servers) were vulnerable to serious attack for some time. It is likely that many still are, and we are unlikely to learn about most of them. What are we do to? Answer: Use unique passwords […]

Getting chilly for charity

I’m not sure if you’ve been on the Internet lately, but there’s this “ice bucket challenge” thing going around. Sure enough, some members of the AgileBits crew were challenged, and in good form … we challenged all of our co-workers. We’ve made a donation to ALS (as well as several other causes near and dear […]

Watch what you type: 1Password’s defenses against keystroke loggers

I have said it before, and I’ll say it again: 1Password and Knox cannot provide complete protection against a compromised operating system. There is a saying (for which I cannot find a source), “Once an attacker has broken into your computer [and obtained root privileges], it is no longer your computer.” So in principle, there […]

Heads up: Your best defense against the Russian hacker data breach is still strong, unique passwords [Update: And a sale!]

A Russian hacking team claims to have nabbed billions of Logins and email addresses. Fortunately, defending against these breaches is pretty easy with 1Password.

1Password is a very safe basket

—– The right way to build reliable systems is to put all your eggs in one basket, after making sure that you’ve built a really good basket. —– When you use a password manager, you are putting a great deal of valuable and sensitive information in one place. The expression, putting all your eggs in […]

No, you do not need to change passwords in response to the OpenSSL CCS bugs

For the third time this year, there is yet another flaw in an underlying security technology used across the net: the recently fixed OpenSSL bugs announced on June 5. For our customers, we are happy to report that 1Password is not affected by bugs in SSL implementations, nor do these bugs require that most people change passwords. 1Password is not affected […]

On iOS 8, App Extensions, OS X Yosemite, and 1Password

Honestly, we’d like to exclaim from atop Yosemite’s cliffs about our excitement for the other Yosemite, iOS 8, and all the incredible things Apple announced during WWDC 2014’s opening keynote. But the great news is we’re actually here, in San Francisco, to learn first-hand about all this amazing new stuff straight from Apple (though the not-so-great news is we’ll have to hold off on the road […]

Password reuse lands Find My iPhone users in expensive hot water

There are plenty of examples as to why friends shouldn’t let friends reuse passwords, but some users of Apple’s Find my iPhone have become the latest omen of why this practice is so dangerous. On Tuesday, May 27, The Verge reported that Apple’s Find my iPhone feature was being used to lock devices for ransom. […]

Take Control of 1Password ebook updated for our new Watchtower service

By now you’ve probably heard of 1Password Watchtower, our new service that warns and informs you when websites of your Logins have been compromised. Watchtower has been a huge hit with our Mac customers and is coming soon to Windows, and now you can learn more about it in the latest update to Take Control of 1Password, the comprehensive ebook by Joe […]

1Password makes cameo in Silicon Valley

No, we haven’t moved our new office to San Francisco, CA. But 1Password did make a brief appearance in HBO’s Silicon Valley comedy this week, episode “Third Party Insourcing.” Those entrepreneurs may be struggling with the trials and tribulations of… being entrepreneurial, but at least they don’t have to struggle with strong passwords. [thanks for the heads up, Luca […]