Advice Request New Bitwarden Security Audit Complete

Please provide comments and solutions that are helpful to the author of this topic.

Add-on/Extension Page
https://bitwarden.com/
Gandalf_The_Grey

Gandalf_The_Grey

Level 76
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,644
Our commitment to security is unwavering. Read about our latest security audit:
We take the security of Bitwarden seriously. In addition to our open source codebase and public bug bounty program, we also understand the need for official security assessments and penetration testing from reputable third parties. In November, 2018, Bitwarden successfully completed a source code audit and cryptographic analysis by security firm Cure53.

In our commitment to a regular cadence of security audits on various aspects of the Bitwarden platform, we are pleased to announce that Bitwarden has completed a thorough security assessment and penetration test by auditing firm Insight Risk Consulting.

In the interest of providing full disclosure, below you will find the executive summary that was compiled from the team at Insight Risk Consulting along with an internal report containing a summary of each issue, impact analysis, and the actions taken/planned by Bitwarden regarding the identified issues. We are happy to report that no major issues were identified during this audit. One moderate issue has been patched in the latest Bitwarden server update.

We hope that this assessment reiterates our commitment to the security and integrity of the entire Bitwarden platform and helps further strengthen the trust that our users place in Bitwarden every day.
Click to expand...
PDF report and contact option given at the bottom of this article:
bitwarden.com

Bitwarden Upholds High Security Standards with Annual Third-Party Audits | Bitwarden Blog

Bitwarden will continue to uphold high cybersecurity standards through annual third-party security audits of the Bitwarden product and service.
bitwarden.com bitwarden.com
 
  • Like
  • +Reputation
  • Applause
Reactions: cryogent, upnorth, blackice and 13 others
Sort by date Sort by votes
Gandalf_The_Grey

Gandalf_The_Grey

Level 76
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,644
Pressing ahead with security and compliance, Bitwarden completes SOC 2 Type 2 and SOC 3 certifications:
SOC 2 Type 2 and SOC 3 certifications are complete
System and Organization Controls (SOC) comprise a set of control frameworks that independent auditors use to validate and certify an organization’s systems and policies with respect to security and data protection. The purpose of SOC standards is to provide confidence and peace of mind for organizations when they engage third-party vendors. A SOC-certified organization has been audited by an independent certified public accountant who determined the firm has the appropriate SOC safeguards and procedures in place.

As part of our commitment to keeping customer data secure and private, Bitwarden performed an audit with AuditOne, LLP, to cover the most important facets of data security regarding our processes for systems, employees, and security controls.

This audit serves as a declaration that Bitwarden operates holistically in the best interests of our customers and their data, taking every reasonable precaution.
Click to expand...
bitwarden.com

Bitwarden achieves SOC 2 certification | Bitwarden Blog

SOC certification emphasizes security as our top priority.
bitwarden.com bitwarden.com
 
  • Like
  • +Reputation
Reactions: cryogent, upnorth, blackice and 7 others
Upvote 0 Downvote

Similar threads

upnorth
    • Like
    • Applause
    • +Reputation
New Update Bitwarden Passes Third annual Security Audit with flying colors
Replies
1
Views
725
Passwords and passkeys
Pixelman
Pixelman
Gandalf_The_Grey
    • +Reputation
    • Applause
    • Like
New Update Bitwarden Inline auto-fill menu is now live (browser extensions)
Replies
2
Views
401
Passwords and passkeys
BigWrench
BigWrench
silversurfer
    • Like
New Update Bitwarden Free: WebAuthn new passwordless 2FA method
Replies
0
Views
469
Passwords and passkeys
silversurfer
silversurfer

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top