Critical 1Password flaws may allow hackers to snatch your passwords (CVE-2024-42219, CVE-2024-42218)

Two vulnerabilities in the macOS version of 1Password password manager could allow malware to steal stored information and retrieve the account unlock key, says AgileBits. The vulnerabilities were identified during a security evaluation and have been fixed in two consecutive versions of the software. No instances of these vulnerabilities being exploited have been reported yet. Users are advised to update their applications. More details are set to be revealed at DEF CON.