How do you protect yourself from a keylogger?
Hello
If a hacker/cybercriminal stole my 1password vault database and my master password with a malware or keylogger, what to do?
The hacker/cybercriminal can insert the virus/malware on my computer using a 0day vulnerability and insert a remote code using assembly shellcode.
Thanks
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Browser: Not Provided
Comments
-
@mikhailkotsarenko If that should happen, all your credentials are compromised. In this case, you need to first get the invader out of your computer environment and make sure he is actually out, then change all your credentials. And all this faster than the criminal is able to use them. If you happen to store other personal information that cannot be changed to lock someone out, the damage is irreparable.
This is not 1password specific, this could happen with every compromised password manager database+master password.To keep the risk as low as possible, apply best practice to keep your computer free of malware. Best practice includes (but is not limited to) keep your system and virus scanner updated and patched with the latest OS patches and be sure to install only trustworthy software from trusted sources only. It might be difficult to identify software or a source as trustworthy - if in doubt, ask a person more educated with computer use before proceeding.
Nobody is safe against zero day vulnerabilities, but chances are good you personally are not affected, because the time window between a zero day vulnerability gets abused widespread and your virus scanner signature or vulnerable app being updated to fix that security leak is somewhat small. So only very few people become victim in that short time span, and the probability you're included is not very high.
0 -
Very good answer thank you!
0 -
Tertius3 gave a great answer here (thanks for the assist!). The key to protecting yourself from malware like a keylogger is to avoid being infected in the first place.
- Only download official versions of software from a developer's website or from a reputable app/web store. Don't use pirated software.
- Keep operating system protections against malware turned on. For example, on Windows make sure that Windows Defender is turned on.
- Keep your system updated and don't run old unsupported versions of software. This is especially important for browsers, operating systems, and 1Password itself.
But, at the end of the day, once malware has control of your system 1Password is limited in how much it can protect you from it. That's why it's important to keep your system protected and to only use 1Password on devices that you know are safe.
Let us know if you have any other questions. 🙂
-Dave
1 -
@Dave_1P Thank you my friend!
0 -
Happy to help! 😊
-Dave
0 -
Hello,
Note that for a new device, knowing the master password is not enough since to have access to the database on a new device, you need the master password AND the secret key.
Correct or not?0 -
Correct, you need both your account password and Secret Key to authenticate to your 1Password account and decrypt your data on a new device. What the original poster was asking about is a theoretical scenario where a malicious attacker was able to infiltrate your Windows PC and steal both the offline local copy of your vault and your account password from that Windows PC. In that scenario only the account password would be needed to decrypt the stolen local vault that they copied from your device.
This is why it's important to have a strong account password and to also follow best practices when it comes to securing your devices.
You can read more about security here: Find Out How Safe 1Password Really Is
Let me know if you have any questions.
-Dave
0 -
Agreed! 1Password's dual-key encryption ensures that the information in your vaults remains safe even if there was a breach of 1Password's systems.
-Dave
0
