Bitwarden makes it harder to hack password vaults without MFA www.bleepingcomputer.com/news/secu…

Open-source password manager Bitwarden is adding an extra layer of security for accounts that are not protected by two-factor authentication, requiring email verification before allowing access to accounts.

When a potentially suspicious login attempt is detected, like from an unrecognized device, the user will now prompted to confirm the action by entering a verification code they received via email.

Those who fail to provide the code cannot access the password vault.