Phishers target 1Password users with convincing fake breach alert | Malwarebytes

Phishers targeted a Malwarebytes employee with a convincing fake 1Password breach alert, attempting to steal their credentials. The phishing email, sent from watchtower@eightninety[.]com, included a link to a phishing website onepass-word[.]com, but the domain was quickly flagged by security vendors. Users are advised to avoid clicking links in unsolicited emails and to verify account status directly through the official 1Password website or app.