Security issues related to copying account passwords and two-factor authentication to the clipboard.
I recently came across some articles and discovered that the Windows clipboard has no privacy at all. Any program can monitor the unencrypted clipboard.
So, is the feature provided by 1Password to copy account passwords and two-factor authentication to the clipboard not very secure?
Have you considered creating a standalone clipboard for 1Password itself (which only stores in memory and is not cached to the hard drive, using a shortcut key different from Ctrl+C)? After all, since 1Password always runs in the background, it should be able to do this.
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Browser: Not Provided
Comments
-
Hello @Giresharu! 👋
Thank you for reaching out! If you copy something to the Windows clipboard then it can indeed be seen by other apps on your device. I recommend only using 1Password on devices that are safe and where you only install trusted software. For your security, 1Password automatically removes copied passwords from the clipboard after 90 seconds.
If you'd like to avoid using the clipboard, you can use 1Password in the browser or auto-type to fill your passwords and other information instead:
I hope that helps.
-Dave
0