Don't feed the phish! Block it with Bitwarden

Thanks to AI, phishing attacks have become a bigger threat than ever before. They are now over 4,151% more frequent since the release of ChatGPT, according to a study by SlashNext. AI has enabled attackers to swiftly scale their phishing operations, using AI agents and automations to quickly generate and deploy attacks. 

To help protect against these AI-enhanced phishing threats, most password managers offer built-in phishing protection by preventing credential autofill on unrecognized websites. This capability is expected and a great first step towards protecting sensitive credentials.

Bitwarden takes phishing protection a step further with the new Bitwarden phishing blocker. When you attempt to visit a known phishing site — whether from an email link, text message, or mistyped URL — the Bitwarden browser extension will automatically detect the danger, warn you, and redirect you to a safe notification page, helping you steer clear of scams and keep your credentials secure in real-time. Unlike other solutions on the market, Bitwarden phishing blocker limits false positive notifications by leveraging a database of known phishing sites instead of simply suspicious ones. 

With the Bitwarden phishing blocker, proactively stop phishing attacks before they can fool you.

Phishing sites are identified via a regularly updated open-source repository, phishing.database. This repository is maintained by a community of vigilant cybersecurity experts and is in line with the Bitwarden mission of open source security. When the Bitwarden browser extension detects that a website in the phishing database is attempting to load, the user will be redirected to a secure notification page. This ensures that no matter the source of the phishing attack — including email, text, typo squatting, or ad-content — malicious sites are stopped before they cause further harm even when you don't have a saved credential for that site Users can turn this feature off or re-enable it at any time, allowing flexibility in your personal security posture.

See how Bitwarden phishing blocker quickly blocks and alerts the user in this short demo:

Bitwarden phishing blocker goes beyond the built-in phishing protection offered by most password managers. By leveraging a repository of known phishing sites to alert users, Bitwarden phishing blocker provides an additional layer of security protection, helping ensure credentials are safe from increasingly undetectable phishing attacks. 

The Bitwarden phishing blocker is the newest addition to existing Bitwarden capabilities that protect users from phishing attacks — continuing the vision of ensuring no one gets hacked. 

Bitwarden also supports the following capabilities for phishing protection: 

• Passkey support for phishing-resistant authentication

• Autofill credentials on only trusted sites associated with saved logins

• Directly launch associated website from saved login items 

Bitwarden phishing blocker is available with premium and family plans. No set-up is required, so users can benefit from the blocker right away! Free plans can begin using Bitwarden phishing blocker by upgrading to premium, or continue benefiting from free phishing protection like autofill and passkeys. For free plans looking to upgrade, simply navigate to the Settings section in the web app and select Go Premium.

Coming soon: Businesses looking to have more visibility into targeted phishing attacks across their organization can leverage Advanced Phishing Blocker in future releases, which offers phishing-specific event logs and controls.