Stop Storing Your Email Password in Bitwarden

Bitwarden is rolling out a new security feature in February that requires a confirmation code sent to your email when logging in from an unrecognized device—unless you have two-factor authentication (2FA) enabled. While this enhances security, it could backfire if your email login is stored within Bitwarden itself.

If you rely on Bitwarden to access your email and need a verification code to log in, you could end up locked out of both your password manager and your email with no way to recover either. To avoid this, memorize your email password separately or enable 2FA to bypass the extra verification step.

Bitwarden isn’t alone in implementing this type of security measure, and other password managers may follow suit. If you haven't already, now is the time to strengthen your account security—enable passkeys, upgrade weak passwords, and make sure you don’t depend entirely on one system to access all your accounts.
Source: PCWORLD 2025.