In response to the COVID-19 situation, I have transitioned to working entirely from home.
My company provided me with shared (across ~3 - 10 employees) LogMeIn credential so I can remotely use my Windows work computer.
Normally I had been using 1PasswordX in Chrome when I was at physically at work. However, these new circumstances have made me question my setup/behavior, especially considering my 1Password Account is my own, and not provided by work. As such, I have tons of personal login/other sensitive information stored there.
I do have separated vaults, but I haven't seen a way to completely sandbox my Work vault on the work computer. I can turn a vault off, but if someone had access they could just turn the Personal vault back on. Plus, since my master password is global for my account, if it was obtained/captured, this setup wouldn't keep anyone from accessing any of my vaults.
I've since moved to the Windows application instead of X, because of the Secure Desktop login option. However, because I'm using LogMeIn that is always present in the secured desktop, but always shows up as a different Windows ProcessID number. So there is no way to be sure what else is running without opening the task manager each time to check if it is still only LogMeIn.
I also have chosen not to store my PC login credentials in LogMeIn, since others have access to that account. Are there any other simple steps I could take to make sure the situation is as secure as possible. When I was physically in front of my computer it felt less questionable. Now I have no physical access to my machine, but there are 100+ employees in the building who potentially could access that machine.
It seems the most secure but also the most inconvenient thing would be to never type or paste my master password on that remote PC. I could unlock my vault only locally on my Mac and copy individual Work vault credentials over. My master password and Personal vault credentials would be secure, but the workflow would be very awkward and slow.
I'm not imagining that anyone specific is doing anything nefarious. I just tend to opt on the side of caution wherever possible. Am I missing anything?
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided