In its testing, BleepingComputer found that the site did accept user credentials but once they were submitted, it would redirect them to Bitwarden’s official login page. This phishing site was carefully designed to look like an exact replica of Bitwarden’s actual Web Vault login page. While some could easily spot that the ad led to a phishing site due to the fact that the domain was “” instead of just “”, many users did end up clicking on it. They then took to both Reddit and the Bitwarden forums in an attempt to warn others.
0 Comments
Leave a Reply. |