1Password Adds Additional Phishing Protection

Popular password manager 1Password will be introducing a pop-up to help users better protect against possible phishing attacks.

One advantage of a password manager is the "autofill" feature, where you can have your password manager automatically fill in on a login page if you so choose. This can be a helpful line of defense against phishing attacks because if the password manager fails to autofill, that could be your sign to pause and make sure you're on the right page.

However - as many password manager users know - this feature isn't always perfect, and it's not uncommon to have to manually copy/paste your credentials. These frequent false alarms can make users less likely to be concerned when it happens.

To help combat this, 1Password is now adding pop-up that appears when you try to paste your password.

The feature will be enabled by default for individual and family plan users, but must be enabled by admins in enterprise plans.

Bitwarden recently announced a similar feature will be coming soon to their premium and family plans, along with a price increase.

Due to how common autofill failures are, I personally have concerns that this will become just another thing that users will grow accustomed to in time, though it's equally possible that the nudge may be helpful in the long run, especially for users who may not realize that a lack of autofill could be cause for concern.

At Privacy Guides, we strongly advocate for the use of "unphishable" authentication methods, such as passkeys or security keys.