Because they are end-to-end encrypted, as evidenced by their account-recovery mechanisms: they cannot offer one.

Correction: They TELL YOU that they can’t offer one. Doesn’t mean there actually isn’t a way. Smartphone messaging apps offer end-to-end encryption. Yet, the NSA can regularly crack those. Why? Not necessarily, because they crack the encryption, but because they crack the keyboard systems you use to input your password. You can do the same with any password manager program.

LastPass had a mere security breach, and they suffered a 50+% market share drop between 2001 and 2024. An active backdoor would drive any company to 0% market share damn quick, which in business terms is called a fatal level of risk – a business killer for anyone in the security industry.

Only if it’s discovered, properly delegated to the news and so on. And no, an active backdoor would NOT drive any company to 0% market share damn quick. NEWS about such a backdoor do that. And there ARE and were such backdoors. Just look at EncroChat and Microsoft Outlook for example.

Then, you need to learn about NOBUS approaches. If you have a billion dollar NOBUS approach, normal mortals like you and me won’t find those backdoors. And they will be accessed in a very smart way that you will very likely not be aware about.

I’m not laughing… I feel sorry for you. […] They didn’t think you would out yourself as such a security anti-intellectual.

Yeah, how nice and helpful. That’s surely make me think better of you and not as a salty linux user.

For the record, not only can you script secure BitWarden exports to your storage enclave of choice, but you can even script exports to KeePass for offline access.

I know, and flash harddrives can fail. And exporting them takes time etc. Putting them on paper is fucking easy. You make a .docx or .txt file, input the information, print and file it and you’re done. Unless there is a fucking fire, that shit is secure for 20+ years without a problem. Your pc can break, your harddrives can break, your USB sticks can break or get lost, but that paper is very likely going to still be there. Plus, it’s super quick to read, transport and update. Bonus points if you use an easy encryption system.

X-Doubt. Ubisoft did not store their passwords in plaintext. Those passwords were all hashed appropriately.

Ah, the good old linux user “I know it all better than you”-bullshit. But no, actually, you’re wrong. I got an e-mail from Ubisoft, apologizing for it, because they did not store it appropriately. And yes, I’m aware of haveibeenpwned.com and I check it once a year or so. And by the way: That website is integrated into the Firefox password manager, so it automatically tells you if such a report exists for one of your passwords. And no, there are not any other password breaches for any of my other accounts in the last 20+ years. So go fuck yourself.

In all three cases, it’s user error on your part.

Remember how I said that linux users tend to blame every problem on the user? This is it. I’m sorry, but you’re an ignorant, incompetent hack who pretends to know things he doesn’t know. You know what? Actually I’m not sorry at all.