Security

Everything you need to know about 1Password and XcodeGhost

Over the past few days, security researchers from Palo Alto Networks discovered that 39 apps infected with malware found their way into the Apple App Store in China. Since the news broke, the malicious apps have been pulled from the App Store— and we’ve had a few questions about what this might mean for 1Password and password managers in general. To put your mind (and your passwords!) at ease, we’re answering some of the most common questions and concerns that iOS users have had about malware, compromised apps, and the security of 1Password.

So wait… what happened? How did this get in the App Store?

It’s kind of a long story, but we’ll make it short. In software development, there are many, many tools that can be used to build an app, and iOS developers rely on a compiler called Xcode as part of that process. A compromised version of that compiler made its way to the web in China, and was downloaded from an untrusted source. In this case, all apps built using the malicious compiler, XcodeGhost, were modified to sneak malicious code into the App Store. Though Apple works to review and screen apps for malware before they reach the App Store, in this case Apple confirmed that the attackers were able to make it through the review process without raising any red flags.

What does this malware do?

In general, most malware is designed to capture personal information and/or user credentials, and send them back home to the attacker who compromised your device. While XcodeGhost does not directly affect the 1Password application, it indirectly affects those who use the application through your device’s clipboard. In a post outlining the malware’s capabilities, senior malware researcher Claud Xaio noted that this particular strain could:

  • Prompt a fake alert dialog to phish user credentials
  • Hijack opening specific URLs based on their scheme, which could allow for exploitation of vulnerabilities in the iOS system or other iOS apps
  • Read and write data in the user’s clipboard, which could be used to read the user’s password if that password is copied from a password management tool.

Additionally, according to one developer’s report, XcodeGhost has already launched phishing attacks to prompt a dialog asking victims to input their iCloud passwords.

Should I be worried? Does this affect me?

There are a few very specific factors that determine whether your device is at risk, but overall, this vulnerability is a rare occurrence for the App Store.

  • At present, this issue mostly affects devices using the Chinese App Store, though researchers have found compromised apps in the Canadian App Store as well.
  • The malware is only in applications built using a compromised code compiler. A list of affected apps can be found on the Palo Alto Networks blog, but security researchers believe that as many as 344 apps may be vulnerable to the attack.

Will 1Password protect my data if an app on my iPhone or iPad has been infected by XcodeGhost?

We have designed 1Password with your privacy in mind at all times. We use strong, reliable encryption and take many, many measures to make our application breach-resistant. Combined, the many layers of security we’ve implemented work together to secure your passwords and protect your most sensitive data— but if your device has been compromised, there’s almost nothing that 1Password can do to defend it. As previously stated in a post on malware by Jeffrey Goldberg, our Chief Defender Against the Dark Arts:

I have said it before, and I’ll say it again: 1Password […] cannot provide complete protection against a compromised operating system. There is a saying […] “Once an attacker has broken into your computer […], it is no longer your computer.” So in principle, there is nothing that 1Password can do to protect you if your computer is compromised.

Eek! My phone is infected with this— what should I do?!

First (and most importantly): don’t panic! There are a few simple things you can do to to return things to normal. If you’re positive that you’re using an app that was affected, here’s what you can do immediately to protect your data:

  1. Delete the compromised app(s) from your phone. If you are uncertain about whether an app has been compromised, it’s okay to delete it out of an abundance of caution.
  2. Change any passwords that you think may have been compromised through your device’s clipboard. Any passwords that you may have accessed through the 1Password extension are safe from this strain of malware, and do not need to be changed.
  3. Avoid redownloading or reinstalling any of the compromised apps until they have been updated. When an update has been released, be sure to download it from a trusted source once the developer has officially confirmed that a new, secure version is ready for you to use. If you’re uncertain of this, you can visit the developer’s site or check with their support team for help.

The XcodeGhost vulnerability doesn’t directly affect 1Password— we have not used the malicious version of Xcode, and the malware it injects into applications was not designed to directly compromise or target our application. Though the malware in compromised apps on any platform has the potential to put any user’s credentials at risk, especially when it can access a device’s clipboard, all technology users benefit from the work security researchers do to find vulnerabilities like this.

If you’ve made it this far down the post and still have questions or concerns, please leave a comment here or start a conversation with us in our discussion forums. You can also reach out to us on Facebook and Twitter.

1Password for iOS header

1Password 6 for iOS: The Extreme Makeover Edition is here!

We all have a ton of passwords and important information to keep track of, and 1Password is the best place to keep it all safe and sound. Whether it’s your passwords, passport number, or credit card information, 1Password makes it convenient for you to stay secure, because we love you. 💙

Over the years, as our data has moved from our desks to our pockets to our wrists, we’ve built (and rebuilt) 1Password to have the strongest defenses and the easiest usability. With iOS 9 we’ve created some amazing new additions and we’re finally ready for the big reveal.

Meet 1Password 6 for iOS.

1Password 6 Hero

A lovely shade of #1A8CFF

One of the first things we noticed when starting this project was that 1Password was looking a little, well, monochrome. Our designers spent hours holding up paint chips under different lights and finally settled on #1A8CFF to make everything pop. We affectionately call it Bits Blue. We’ve also pushed around the pixels of the category icons to make them more delightful, and beautified 1Browser. Don’t worry, everything you know and love is still in a familiar spot; it just looks shiny, new, and wonderful.

Rolling around new passwords

A password’s greatest strengths are its length and its randomness. But let’s be honest, sometimes you need to type in a password by hand and typing ErymQd3svcqM3BPYKWh is hard.

With our new Wordlist Password Generator, you can create long passwords out of randomly chosen real words: cellist-dander-signify-esteem-elver is easy to read, easy to type, and super secure. The new generator is inspired by Arnold Reinhold’s Diceware. We think it’s an amazing concept and aligns perfectly with our goal of making it simple and convenient for you to secure your digital life.

Pro tip: Diceware passwords make terrific answers to security questions! To have 1Password remember them for you, add a custom section with a custom password field to the Login item (Pro Features required for custom fields).

Installing a Spotlight

Spotlight search has always been a handy tool in iOS, helping you find things very quickly on your iOS device: a friend’s phone number, directions to a restaurant, or that important email that is somewhere in your inbox.

Spotlight is supercharged in iOS 9, and we’re taking advantage of it. New in 1Password 6 for iOS, Spotlight can search your 1Password data from the iOS home screen and take you straight to the desired item! It’s never been faster to find an item, and 1Password doesn’t even need to be open to do it.

To start using Spotlight with 1Password, enable the feature in 1Password > Settings > General.

Landscaping improvements

1Password has always been a portrait of amazingly convenient security, but its landscape mode has been limited to the larger screen of the iPad. We’ve made some significant improvements to landscape view support on iPad, iPhone 6 Plus, and iPhone 6s Plus.

On supported iPad models, 1Password will take advantage of the new Slide Over and Split View features in iOS 9, automatically scaling to the view size you set. On iPhone 6 Plus and 6s Plus, 1Password will now use that extra space to stretch out in landscape mode, displaying your categories and items in a column alongside the detail view.

1Password 6 Landscape Hero

A more watchful security companion

You’ve been telling us how convenient it is to look up Logins, Credit Cards, Secure Notes, and Passwords on your Apple Watch, but you’ve also told us you wanted more. By popular demand, 1Password for Apple Watch now supports more category types.

Say hello to Passports, Wireless Routers, Driver’s Licenses, Social Security Numbers, and Bank Accounts right on your wrist! To add items from these categories, open the item in the iPhone app and tap Add to Apple Watch.

We’ve also added a convenient way to manually lock 1Password for Apple Watch: simply Force Touch the screen and tap the Lock button.

How much does this extreme makeover cost?

Given the fantastic new features and improvements, you might be thinking 1Password 6 is a paid upgrade, which makes what I’m about to tell you even more incredible. Basic features are still free for everyone, and if you’ve already purchased the Pro features in 1Password 5, you still have them in 1Password 6 for no additional cost. 1Password 6 is available on the App Store.

If you find 1Password useful, please take a couple of moments to leave a rating and review on the App Store. It makes a huge difference to us. Thank you very much! Remember that we can’t reply to App Store reviews, so please post requests for technical support on our forums, or email support@agilebits.com.

We always love hearing from you. Start a conversation with us on our Support Forums, Twitter, or Facebook.

Here’s to you, Mr. Sheridan!

One of the challenges we face as a tech company is making our software accessible to everyone. It’s sometimes hard to gauge, because we’re so close to it. Doing research to answer customers’ questions makes it even more difficult to take a step back and make sure we’re not getting tooooo nerdy.

Nosillacast

That’s why I was so excited when I heard from my friend Allison Sheridan this morning. Allison hosts the fantastic NosillaCast, a technology podcast with an ever so slight (ahem) Macintosh bias. She’s previously documented her own experience of switching to 1Password, but yesterday she spoke to Ken Sheridan, her octogenarian father-in-law.

1Password for Mac logo

In this lovely interview, we learn how Mr. Sheridan was managing his passwords before Steve (his son and Allison’s husband) helped him set up 1Password. My favourite part is that we also learn how 1Password has made his digital life so much easier and more secure. This enables him to more frequently do things like check his financial accounts, which he used to do only occasionally because it was such a hassle.

We want everyone to have a great experience with our software, and Mr. Sheridan makes me feel like we’re on the right track. Have you shared 1Password with friends, kids, or parents, possibly less geeky than you? We’d love to hear your experience. Leave a comment below or stop by our discussion forums.

Thanks for introducing your family to ours, Allison. Mr. Sheridan, we’re so happy to welcome you.

The Work Smarter Sale header

The Work Smarter Sale

Over the past month, we’ve been publishing Passwords 101 lessons to Facebook and Twitter. It’s now time to apply what you’ve learned to your everyday lives, at work and at school. Of course, you could give your brain a workout and keep all these strong and unique passwords stored inside your head, but 1Password is the best way to make security simple. We’re making it easier for you to get started: 1Password is now on sale across all platforms! Save 30% on 1Password for Mac and Windows, and 50% on 1Password for iOS and Android.

Do we have any stragglers or class cutters among us? No worries! Let’s review what we covered over the past few weeks.

Password length

Length is not the only thing that will keep an attacker from figuring out your passwords, but it’s significant. 1Password makes it super easy to generate unique, long passwords; but equally important, it remembers them for you so that you don’t even have to think about trying to recall a lengthy phrase.

Personal information is NOT for passwords

It’s scary how easy it is for a determined person to find personal information about anyone on the Internet. For this reason, it’s best to keep such information out of your passwords. If your password is 30 characters long and 25 of them have some personally identifiable information, that leaves only 5 random characters! To protect your accounts, make sure that there’s zero personal information in your passwords.

Substitutions are not secure

When 1Password first started teaching me about password security, I thought I was really clever when I changed letters to numbers and symbols. They resembled the letters enough that I wouldn’t make mistakes when entering the passwords from memory. Totally secure, right? Unfortunately, no. It turns out that the bad guys are also very clever, and they account for this in their attacks! The best thing is to have 1Password generate truly random passwords for you.

Never reuse passwords

Sometimes the simplest lessons are the most important. It’s a no-brainer: if you use the same password across accounts, access to one equals access to all. That is as convenient for an attacker as it is for you! Instead, let 1Password generate and remember a unique password for each account.

This sale makes it simpler than ever for you to keep all of your important data secure inside 1Password! Head over to the Mac App Store or the AgileBits Store to purchase 1Password for Mac or Windows for 30% off its regular price. You can also snag the Pro Features in 1Password 5 for iOS and the Premium features in 1Password 4 for Android for 50% off.

As always, this is a limited time sale. Get back to school in style and ensure that you’re working smarter, not harder. If you have any questions, Professor Bits’s office door is always open. Leave a comment here or join us in the forums; we love to hear from you.

DevBits header

Web View Filling ups the awesome factor of the 1Password App Extension

App Developers, this one’s for you!

Since the introduction of the 1Password App Extension API, support for the extension has been added to over 200 apps. We are so excited by this show of support from the development community that we decided to add functionality to the App Extension API to make it even more useful for you and more powerful for your users.

Version 1.5 = (Web View Filling)^2

As most of you already know, the 1Password Extension was originally designed to fill login details (usernames and passwords) in Safari and third-party applications. Thus far, the primary use of 1Password in third-party apps has been to sign in, which means that users likely invoke 1Password only once, right after installing your app.

In the latest update, we’ve made the app extension more powerful and more versatile. I am happy to introduce you to the redesigned Web View Filling capability of the 1Password App Extension API, which will enable your users to use 1Password to fill not only Logins, but also Credit Cards and Identities in any of your app’s web views.

From a technical point of view, this updated capability works in a similar fashion to the original Web View Filling: it can fill 1Password items in web views. However, to get the best user experience from the 1Password Extension, we should treat it as two distinct capabilities. Let’s take a quick look at what makes these two options unique, so that you can determine the best choice for your use case.

Scenario 1: Authentication

Let’s say users have to sign in to a service before they can use your app. When the user opens your app, they are presented with a web view in which they can enter their username and password to log in. In this case, you do not want the user to be distracted or confused by Credit Card and Identity items. You only want the Login for the service to show up in the 1Password Extension so the user can log in quickly.

Login selection screen using app extension API 1.5

Scenario 2: Web Browsing

  • Can your users purchase items from your web store?
  • Can your users sign up for a service by entering their information in to a web view?
  • Does your app have a built-in browser?
  • Does your app have billing and/or shipping forms for users to fill?
  • Would you like the 1Password Extension to show in the share sheet?

If you answered “yes” to at least one of the above questions, consider adding support for 1Password using the wonderful new Web View Filling capability, which will enable you to permit the filling of Credit Cards and Identities. You will also benefit from the fantastic new Brain filling logic we use in 1Browser and Safari.

This capability will help make your users’ browsing experience simple and secure by filling Login details, Credit Card items and Identities.

Fill Login, Credit Card, and Identity info when using app extension API 1.5

The Code

Choosing between the two scenarios is very easy: simply decide whether you want to show the Credit Cards and Identities that the user has stored in 1Password. To show only 1Password Login items in the 1Password app extension, pass YES as the parameter for showOnlyLogins. To unlock the full awesomeness of the 1Password app extension and take advantage of the new Web View Filling of Logins, Credit Cards and Identities, pass NO. That’s really all there is to it!

- (IBAction)fillUsing1Password:(id)sender {
    [[OnePasswordExtension sharedExtension] fillItemIntoWebView:self.webView forViewController:self sender:sender showOnlyLogins:NO completion:^(BOOL success, NSError *error) {
        if (!success) {
            NSLog(@"Failed to fill into webview: <%@>", error);
        }
    }];
}

1Password ❤ App Developers

I want to take this opportunity to thank all of you app developers who have already added the 1Password app extension to your apps; you’re awesome! This new functionality gives you the chance to make security even more convenient for your users, and I can’t wait to see how you use it. Please don’t forget to submit your app to our Apps ❤ 1Password directory.

A newsletter just for you

You can also subscribe to our 1Password App Extension Developers newsletter. We’ll send you an occasional newsletter containing 1Password App Extension news, updates, and tricks, to help you realize the full potential of the 1Password Extension API in your iOS apps.

If you have any questions, you can comment on our GitHub project or email support+appex@agilebits.com. I look forward to talking to you!

The wonder women of AgileBits

The wonder women of AgileBits

In continuing our celebration of Women’s Equality Day, I wanted to take a moment to introduce you to some of the awesome women that I get to work with on the AgileBits team. Here’s a little bit about us and how we all get our start in the tech industry, and some of our future plans.

Aleen

Aleen

Aleen is the official writer for 1Password for iOS. She hails from Phoenix, Arizona, where she lives with her husband and two cats. She’s a diversity advocate, budding developer, wordsmith, and podcaster. If you’ve seen her at all on the Internets, you’ll also know that she’s in contention for the team’s coveted coolest hair award.

Aleen has always been interested in tech (she spent her 16th birthday reformatting her computer’s hard drive!) and has a degree in technical writing. She’s currently writing an app of her own to learn Swift 2.0, and she looks forward to helping out on the development team in the future.

You can read more about Aleen in her Behind the Mug feature.

Eva

Eva

Eva is a crafty geek who came to the tech industry reluctantly after attempting to avoid following in her programmer-parents’ footsteps. She loves tackling difficult problems, knitting, and all things Whedon. Eva works on our customer support and social media teams, and dreams of enhancing her PHP coding skills in her spare time. She and her husband are working on adopting a daughter and aspire to raise her to embrace her own geekiness, whatever form that may take.

Laura

Laura

Born in England, Laura has become a California girl by choice. She’s been working in tech since leaving school, first as a computer programmer and then as a teacher of programming, system design and database design for Tandem Computers. After raising two children, she pursued her tech passion and finally joined our team to wow our customers every day.

Megs

Megan

I guess I should tell you a little bit about myself, as well.

I’m an artist and a big sci-fi/fantasy geek (on the dressing-up-at-conventions level on the scale), and I’m responsible for leading the social media team here at AgileBits. When I’m not helping users in the forums or crafting content for 1Password on Facebook, you’re likely to find me exploring some new place with my camera or getting my hands messy in one sort of project or another.

AgileBits is my first foray into the tech world, and honestly, I couldn’t be enjoying it more. I love the challenge of solving problems for our customers and sharing the secure word about 1Password in a fun and creative way. (It’s also pretty great to be able to work from my choice of hammock or beanbag chair at the office!)

Michelle

Michelle

Michelle comes from an arts and sciences background and is responsible for keeping the AgileBits Toronto office organized and running smoothly. One of her favourite parts of her job is being able to send birthday treats to the AgileBits team members around the world. I have to say, it’s one of our favorite parts of her job, too!

Michelle is just about finished with her first big project at AgileBits: designing and coordinating our move into a shiny new office. You’ll soon get a good look at all her hard work, right here on the blog!

Peri

Peri

Peri is a musician who loves hiking, camping, and river excursions. She works on our customer support team, focussing her attention on 1Password for Android. After being the person in her family who always fixes the problems with everyone’s computers, an internship at Mozilla (the Ascend Project) introduced Peri to a few other AgileBits team members in her hometown of Portland. She just couldn’t resist joining us!

Sara

Sara

Sara is our Minister of Magic, responsible for making sure everything at AgileBits keeps running. Her favourite part of the job is working with awesome people. As one of the founders, she has often preferred a behind-the-scenes role, but is always ready to dive in and make sure our users know they are being heard and helping people feel the love. : )

Virginia

Virginia

Virginia is another Portlander who joined our team after attending Mozilla’s Ascend Project. When our official “Day Brightener” is not making users smile in the forums or via email, you’ll likely find her hosting a pub trivia night; singing karaoke; or off on some other pursuit of happiness, fun and adventure!

With a background in customer service and admin support, Virginia got her start in tech by talking to friends in the industry, attending conferences and meetups, and completing online coding tutorials. She’s been dreaming about development, but she’s enjoying customer support so much that she’s not sure she wants to give it up!

Winnie

Winnie

Winnie is a German expat living in Montreal. She’s an iOS developer with a passion for photography, travelling, and her two crazy cats. A teacher sparked Winnie’s love of programming, and she hasn’t looked back since! She loves being able to add new features and fix bugs in an app on which so many people depend.

Winnie is active in her local programming scene and is spending her spare time building an app that automates some of the processes in her home.

Want to be a part of this amazing team?

We’re always looking to add unique voices to our team. If you’re interested in talking to us about employment opportunities, please write to jobs@agilebits.com.

Womens Equality Day

Female Tech Pioneers

In honor of Women’s Equality Day, we’d like to add some more awesome people to your internal wiki of women who have made remarkable strides in the technology industry. Many of us already know that Ada Byron, Countess of Lovelace, and Admiral Grace Murray Hopper were computer science pioneers, but we owe our thanks to many other talented women as well.

Dr. Patricia Bath

Patricia Bath

A highly accomplished laser scientist and ophthalmologist, Patricia Bath was the first black person to serve as a resident in ophthalmology at New York University, the first black woman to serve as a staff surgeon at the UCLA Medical Center, the first female ophthalmologist to be appointed to the faculty of the University of California at Los Angeles School of Medicine Jules Stein Eye Institute, and the first woman to chair an ophthalmology residency program in the United States. Just in case you thought she couldn’t get any cooler, Dr. Bath also invented the Laserphaco Probe, which revolutionized the way cataracts are removed. With this invention, she saved the sight of countless people all over the world, some of whom had been blind for decades.

To read more about Dr. Bath, check out her biography from the U.S. National Library of Medicine and the Black Inventor Online Museum.

Annie Easley

NASA_Science_and_Engineering_Newsletter_Annie_EasleyBack when the word “computer” referred to a person rather than a machine, Annie Easley was one at the National Advisory Committee for Aeronautics and later NASA. It didn’t take long for her to pursue a degree in mathematics and, a bit later, she learned how to program using SOAP and FORTRAN. She contributed significantly to the development of the Centaur Upper Stage Rocket, which helped launch over 100 unmanned satellites and probes. To learn more about Ms. Easley in her own words, check out her interview for the NASA Headquarters History Office “Herstory” Project.

Dr. Evelyn Boyd Granville

granville

Evelyn Boyd Granville was the second black woman in the United States to receive a Ph.D. in mathematics. She went on to join IBM and, as a result, worked on both NASA’s Project Vanguard and Project Mercury. After leaving IBM, she worked for the North American Aviation Company on Project Apollo. Without the contributions of Dr. Granville, it’s hard to tell where our space program would have gone. To read more about Dr. Granville, check out the article she wrote for SAGE: A Scholarly Journal on Black Women.

Dr. Mary Kenneth Keller

mary_kellerDid you know that the first woman to earn a Ph.D. in Computer Science in the United States was a nun? Sister Mary Kenneth Keller graduated from the University of Wisconsin in 1965; she also helped develop BASIC at Dartmouth University. She founded the computer science department at Clarke University and served as chair of the department for almost 20 years. Sister Mary Kenneth was also a proponent of getting women involved in computing. To learn more about Sister Mary Kenneth, check out her Wikipedia page.

These are only four women of the many thousands who’ve left their indelible stamp on every technical space, and to whom we owe a debt of gratitude. Who are your favorite female tech pioneers? Let us know in the comments.

1Pi icon 1024

1Password 5.5 for iOS: The Fun in the Sun Edition

While all the AgileBits kids have been having a fun- & sun-filled summer vacation, our development, docs, and support teams have been toiling away in our air-conditioned nerd caves to bring you the best 1Password for iOS release since the last one!

Our focus for this release was keeping your security as convenient & refreshing as an ice-cold drink on a hot summer day. Let’s take a sip from the improvements to Vaults, Touch ID, the Extension, and the Apple Watch app.

Switching it up

Multiple vaults are the best way to keep different parts of your life secure, without a ton of clutter. We all have our personal data, family vaults, and even work accounts to keep safe & organized.

We’ve made switching between these roles of your life super simple with an all-new vault switcher. Simply tap the new Vault icon in the upper left to get the quick switcher. Select a vault and you are instantly switched to it.

OPI-55-Vault-Switch

Touchable on demand

In the olden days (meaning yesterday), if you opened 1Password and then tapped Cancel on the Touch ID prompt, 1Password would switch to the Master Password prompt. For your security and convenience, the new Master Password prompt is more flexible: now when you tap Cancel, there is a fingerprint icon on the Master Password screen. Simply tap this icon to immediately restore Touch ID.

Note: If you restart your device, or the Master Password timeout is reached, this new icon will not appear, as the Master Password will still be needed in those situations.

OPI-55-TouchID-Restore

Improved short-term memory

The extension and the main app now share unlock settings, so when you unlock the main app, the extension will remember this and use Touch ID.

Again, restarting the device or reaching a Master Password timeout will still require you to enter your Master Password.

Never drop a PIN again

Unique passwords are great for your logins, and unique PINs for your credit cards are also fantastic. Remembering them? Not so much.

Credit Card items on Apple Watch will now show the PIN field. The next time you buy chips & salsa with your credit card you can take a quick look at your wrist for your purchasing needs.

Closing the Vault

There are many more improvements and fixes in 1Password 5.5 for iOS, and you can check them all out in the release notes or in the in-app Message Center, located in Settings.

While I need to close up the vault for this release, the team can’t wait to show you all the great things we’re working on for the next one! In the meantime, we’d love to hear your thoughts. Leave your comment here, in our discussion forums, on Twitter/ADN, or on Facebook.

1Password for Android header

Wi-Fi Sync comes to 1Password for Android

Yesterday evening, after several weeks of collaboration with our beta family, we published the highly anticipated 1Password version 4.5 for Android. The big news, of course, is that it is now possible to sync your primary vault with 1Password for Mac or Windows using the new Wi-Fi Sync feature.

Look, Ma, no hands! (or clouds)

1Password for Android Wi-Fi logo

We’re thrilled to offer you even greater control over how you sync your 1Password data. If you prefer to keep your vault on your local Wi-Fi network and not fuss with manually copying your 1Password vault to and from your Android phone or tablet, you’ll enjoy the convenience of Wi-Fi Sync. You can read about setting up Wi-Fi Sync in our user guide. If you’re interested in reading more about Wi-Fi Sync from a developer’s perspective, we posted a DevBits article about this on our blog last month.

In related news, you know that “pull to refresh” gesture, where you tap your screen and drag it down? Well, we kind of love it. But that’s not a good enough reason to use it. After all, we don’t just throw things into 1Password, all willy nilly-like. While we were working on improvements for 4.5, we thought, What if you could use that easy, convenient gesture to manually trigger a sync? That would be cool! So now you can.

Polyglottery, levelled up.

One of the ways in which we make 1Password more accessible to folks is by localizing it, and we were immensely proud when we began doing that last year. Today, we add Korean to the list of available localizations.
안녕하세요!

You are awesome and we love you.

You are some seriously passionate people! Every day, our inbox and forums are filled with new conversations. The time you take to submit feature requests and bug reports means the world to us. It helps our developers prioritize resource allocation so we can make 1Password even better for you. The complete rundown of the improvements in version 4.5 can be found on our version history page.

If you use 1Password beta for Android, we have to extend an extra special thank you to you. We love our beta families on every platform, but especially on Android! There are so many different Android devices and without your help, it would be exponentially more difficult for us to make sure every 1Password update is a solid one. Thank you for all that you do.

1Password 4.5 for Android is available now in your local Google Play Store. If you’d like to join our beta team, you’re most welcome! Please sign up on our website. Got feedback? That’s fantastic, we love to hear from you. Please share your thoughts with us in our Android forum.

Master Password feature

Do a little dance, make a Master Password

When you start using 1Password, creating a strong Master Password is the first and most important thing you’ll do. We all know that the Master Password is the sentry that protects your data, so choosing a super-secure password is the key to starting your journey towards better security. After all, this will be the ‘one password’ that you have to remember from now on, so you want to make it a good one! Our Chief Defender Against the Dark Arts has written an awesome blog post to help you through this important step, but there’s a lot of information in there and it can be a little bit overwhelming.

One of our goals with 1Password is to make security convenient. We’ve thought long and hard about how to make the process of choosing this important password simpler and more friendly for our new users.

Could we make the password creation process fun, and maybe even danceable? Why not?

We called on our friend, Jonathan Mann, to help us teach everyone how to create a strong Master Password. It turns out, his method involves a lot less reading.

Jonathan in the Toronto Office

We’ve been humming this song for weeks now, and I’m so glad we can finally share it with you! I’m pretty sure my favourite scene is the 35 bats, but I’d love to know which one makes you smile the most.

IhavetwodogsIhave35bats