On December 22, 2022, LastPass announced that a data breach first disclosed in August 2022 was far more extensive than initially thought. The news sent shockwaves through the industry, leaving many password manager users — especially LastPass users — concerned about the security of their sensitive information.

The breach serves as a stark reminder that no online service provider may be completely bulletproof breach-wise. So today, let’s get into the LastPass data breach and what it means for NordPass users.

The LastPass data breach breakdown

Cybercriminal activity has been on a steady rise for the last decade, and it looks that the trend is not about to change. In fact, today, cybercrime is the most lucrative criminal activity and is estimated to cost the world $10.5 trillion annually by 2025.

So as our personal and financial information is increasingly getting stored online, it is critical that companies take all necessary steps to protect their customers’ data. Unfortunately, the recent LastPass data breach shows that even well-known companies can fall short security-wise.

The company’s latest statement explains that an unauthorized party was able to access LastPass’ cloud-based storage environment and copy customer vault data along with information from a backup of customer account information.

The extent of the breach is not yet clear, but it is likely that it included some personally identifiable data such as email addresses, phone numbers, and billing information for some users.

The response from LastPass to the breach has been met with criticism from both industry experts and customers. In fact, it has already led to a class-action lawsuit, with one plaintiff alleging that the data breach resulted in the theft of around $53,000 worth of Bitcoin.

Did the LastPass data breach affect all password manager users?

Let’s be clear — the LastPass data breach does not have any direct effect on NordPass, its users, or users data.

After all, we’re two different companies and products with completely different security approaches and mindsets. However, we admit that seeing a competitor affected by a breach of this magnitude is an acute reminder to stay vigilant and prepared at all times.

Is NordPass a secure place for your digital valuables?

Given the severity of the LastPass data breach, it’s only natural that people are questioning the security of their password manager, including NordPass.

First, one of the key elements of NordPass is that it is a zero-knowledge password manager equipped with an advanced encryption algorithm known as XChaCha20 to ensure protection of everything you store in NordPass.

This means that all data stored in the NordPass vault is first encrypted on your device and only then sent to the cloud-based server. Because of the way NordPass is set up, it is only you — the user — who holds the decryption key and has access to everything stored in their vault.

The NordPass team can’t see or access anything. The same principle applies in situations of breaches. Even if a bad actor were able to get their hands on your vault data, they would still need your device, which holds the decryption key, to access the actual contents of the vault data.

NordPass CTO Tomas Smalakys offers a more detailed explanation:

Each NordPass user has a unique public-key cryptography key pair. The Public Key is always stored in plaintext form. The Private Key, on the other hand, exists in plaintext form only on the user’s end device for a limited period of time and never leaves it.

When we need to store a user’s Private Key, it’s encrypted with secret-key cryptography (XChaCha20-Poly1305-IETF) on the user’s device and only then passed to us. While the app is unlocked, the unencrypted Private Key is stored in the secure memory accessible only to the NordPass application. When the application is locked, either by the user or automatically after a set period of inactivity, the Private Key is deleted from the secure memory.

For the user’s Private Key encryption, the Master Key is used. The Master Key is derived from the Master Password and a 16-byte unique-per-user cryptographic salt using the key derivation function (Argon2id). We ask the user for the Master Password every time we need to decrypt the user’s Private Key.

 

– Tomas Smalakys

NordPass CTO

Tomas further explains that in addition to the encryption principles above, every item (folder, password, credit card, etc.) has two types of data:

• Metadata (title, website address, cardholder name, etc.)

• Secret data.

For secret-key (symmetric) cryptography, we use an authenticated encryption algorithm:

• XChaCha20 stream cipher encryption.

• Poly1305 MAC authentication.

For public-key (asymmetric) cryptography, we use an authenticated encryption algorithm:

• X25519 key exchange.

• XSalsa20 stream cipher encryption.

• Poly1305 MAC authentication.

User data is encrypted on their devices and never leaves the device in plain text. This means that when the data is in transit or at rest, it is fully encrypted. In the database, both metadata and secret data is encrypted. This means that if bad actors are able to get access to the database or any of its backups, no user data can be accessed.

Furthermore, at NordPass, we feel that due to the nature of our product, our security practices should be transparent. Both NordPass and NordPass Business have had their security posture thoroughly audited by Cure53, a renowned German auditing firm.

NordPass Business has also successfully passed the SOC 2 Type 1 Audit, which ensures that NordPass Business provides proper security controls to manage customer data and protect their interests with regard to privacy.

All these measures help to ensure that the sensitive data stored in NordPass vaults is protected at all times. However, these days bad actors are creative and no longer function as a one-person operation. So it’s always important to be vigilant with your own security and use strong, unique passwords for each account as well as enable two-factor authentication whenever possible.

Bottom line

It remains to be seen how the LastPass breach will impact the company and the password management industry as a whole, but one thing is clear: it has shaken user trust and serves as a cautionary tale for the importance of data security.

Designed to ensure the safety and security of an organization’s operations and protection of its customers, regulatory compliance standards are a fact of life in today’s business world. Fail to comply and be ready to face serious financial, legal, and reputational harm to your organization.

Today, we’re taking an in depth look at regulatory compliance, exploring different standards, and looking into how NordPass Business can help your organization meet the requirements in an easier and more efficient way.

What is regulatory compliance?

Regulatory compliance refers to various processes and procedures of adhering to the laws, regulations, and standards set by various governing bodies. The regulations can come from numerous sources such as local, state, federal, or even international agencies, industry groups, and professional associations. The intention behind various regulatory compliance is to protect consumers and other stakeholders.

Importance of regulatory compliance

The aim of regulatory compliance is to make sure that businesses and organizations operate in a secure, responsible, and ethical manner. Regulatory compliance can also provide businesses and organizations with a competitive advantage by helping to create a culture of transparency and credibility with customers, employees, and other involved parties. Furthermore, adhering to regulatory compliance can improve internal processes, risk management procedures, and mitigate potential legal issues, which in turn lays a great foundation for a sustainable organization.

However, it’s critical to remember that most regulatory compliance is mandatory. Failing to comply with any of the mandatory regulations can result in hefty fines. For instance, Google has been fined nearly $57 million by French regulators for violation of the General Data Protection Regulation (GDPR). Meta — the company formerly known as Facebook — recently has been fined over $400 million by top EU regulators for forcing users to accept targeted ads.

Besides financial losses, non-compliance can cause major damage to the organization’s reputation as clients may lose trust in the organization. This can even lead to serious legal issues.

Below are some of the most common regulatory compliance standards.

National Institute of Standards and Technology (NIST)

The National Institute of Standards and Technology (NIST) is a US federal agency that develops technology, metrics, and standards to drive innovation and ensure operational security within a business environment. NIST compliance is mandatory for all US-based federal information systems except those related to national security. However, the standard can be adopted by any organization.

To be NIST-compliant, a company needs to implement access controls to limit the risk of unauthorized access, develop a comprehensive incident response plan, and devise audit procedures and schedules.

General Data Protection Regulation (GDPR)

The General Data Protection Regulation (GDPR) is a data protection law that applies to businesses and organizations operating within the European Union (EU) and the European Economic Area (EEA). It sets out rules for how organizations can collect, use, and store personal data, and provides individuals the right to access and control their personal data.

To adhere to the GDPR, organizations and businesses need to implement measures such as obtaining consent from individuals before collecting their data, providing clear and concise information about their data collection practices, and implementing appropriate security measures to protect personal data.

Health Insurance Portability and Accountability Act (HIPAA)

The Health Insurance Portability and Accountability Act (HIPAA) is a US law that sets out standards for the protection of personal health information. The law applies to healthcare providers and all other entities that handle personal health information in the US.

To meet the requirements set out by the HIPAA, organizations need to implement secure systems for storing and transmitting personal health information, providing training to employees on HIPAA requirements, and implementing access controls to prevent unauthorized access to personal health information.

Payment Card Industry Data Security Standard (PCI DSS)

The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards that apply internationally to organizations that handle credit card transactions. The regulatory standard sets out requirements for protecting cardholder data and preventing unauthorized access to such data.

The PCI DSS regulations require businesses and organizations that process payment card information to implement secure systems for storing and transmitting cardholder data, conduct regular security assessments, and implement further security controls to prevent unauthorized access to cardholder data.

ISO/IEC 27001

The ISO/IEC 27001 is an international standard that outlines best practices for an information security management system (ISMS). The standard has been developed to help organizations protect their information assets and manage risks related to information security. The ISO/IEC 27001 is not a mandatory requirement.

To meet the ISO/IEC 27001 compliance, organizations need to conduct regular risk assessments, implement controls to protect against unauthorized access, and regularly review and update their information security management systems.

California Consumer Privacy Act (CCPA)

The California Consumer Privacy Act (CCPA) is a privacy law that in many ways mimics its European counterpart — the GDPR. However, the CCPA applies to businesses operating in California and it provides California residents with the right to access and control their personal data, and imposes certain requirements on businesses that collect and handle personal data.

For an organization to be CCPA compliant, it needs to implement security measures to protect customer data. Furthermore, companies are also required to provide clear and concise information about data collection practices, allowing California residents to request access to and deletion of their personal data.

Gramm-Leach-Bliley Act (GLBA)

The Gramm-Leach-Bliley Act (GLBA) is a US law that applies to financial institutions within the US. Like many of the regulatory compliance standards we already discussed, GLBA requires financial institutions to implement safeguards that would protect personal information as well as to disclose their data collection and sharing practices to customers.

To comply with the GLBA regulatory standards, financial institutions may need to implement secure systems for storing and transmitting personal financial information, providing customers with information about their data collection and sharing practices, and implementing access controls to prevent unauthorized access to personal financial information.

Center for Internet Security (CIS)

The Center for Internet Security (CIS) is a nonprofit organization that provides cybersecurity guidance and best practices to help organizations protect their systems and data. The CIS comprises 18 Critical Security Controls for identifying and protecting against the most common cyber threats.

To be CIS compliant, companies and organizations need to establish a comprehensive cybersecurity perimeter to ensure protection of their data and information management systems.

Opinion 498

The Formal Opinion 498 outlined by the American Bar Association (ABA) provides guidance for US-based lawyers and law firms with regard to virtual practice. While the ABA Model Rules of Professional Conduct permit virtual practice, the Formal Opinion 498 provides an additional set of guidelines for virtual practice.

To follow the guidelines set out by the Opinion 498, organizations or individuals are urged to establish secure information management systems and protect them with complex passwords to ensure secure storage and access to client data.

Agence nationale de la sécurité des systèmes d’information (ANSSI)

ANSSI compliance combines a set of security standards set by the French National Cybersecurity Agency. The ANSSI has been developed as a regulatory standard in France to protect sensitive information and systems from cyber threats such as hacking, malware, and data breaches. Companies that store and handle sensitive information may be required to comply with the ANSSI standards in order to ensure the security of that information.

Compliance with the ANSSI standards may involve regular audits, penetration testing, and other security measures to identify and address vulnerabilities in a company’s systems.

How can NordPass help with regulatory compliance?

Meeting regulations and staying compliant can be a complex and time-consuming process, as businesses and organizations must stay up-to-date with the latest regulatory requirements and implement appropriate policies, procedures, and tools.

However, with the right tools at your disposal compliance can be less of a hassle than you might think. One such tool is NordPass Business — a secure and easy-to-use password manager designed for business use and it can help your organization comply with the security guidelines and requirements outlined in the regulatory compliance standards listed above. But how exactly can it help?

Strong passwords and secure password storage

Most regulatory compliance standards require organizations to implement some sort of security measures to limit the possibility of unauthorized access.

For instance, PCI DSS, GLBA, GDPR, and CIS Controls all have outlined guidelines for ensuring the security of personal data processing and storage.

This is where NordPass comes in as a tool that can help. Designed by the principles of zero-knowledge architecture and equipped with an advanced XChaCha20 encryption algorithm, NordPass offers a secure way to store and access business passwords and other sensitive information in line with regulatory requirements.

Password Policy — a NordPass Business feature — can also play a critical role in compliance. Using Password Policy, companies can set certain specifications for password complexity for the entire organization, which can significantly fortify the overall security of the organization.

To easily follow Password Policy rules and specifications, users can use our very own Password Generator — a tool that can generate a password adhering to all the specifications outlined in the Password Policy in just a few clicks.

On top of that, NordPass Business can ensure that all of your organization’s passwords are stored securely and in line with the regulatory requirements.

Secure access management

Some compliance standards require organizations to implement secure access management solutions. For example, this is the case with ANSSI compliance as well as with HIPAA and NIST.

Here NordPass Business and its Admin Panel can play a major role because it is designed to provide organizations a way to effectively and easily manage access privileges across the entire organization.

Via the Admin Panel, solution owners and admins can grant or revoke access to systems as well as monitor member activity within the organization. The Admin Panel is also the place where you can set the Password Policy for the organization, ensuring that passwords throughout the company adhere to certain specifications.

Breach Monitoring

Regulatory compliance standards also tend to outline best practices for responding to a security incident such as a data breach. This is explicitly outlined in the GDPR’s Article 33, which states that data breach including personal data breach should be reported within 72 hours to the supervisory authority. Failing to do so may result in a fine of 10 million or 2% of annual revenue.

NordPass Business is equipped with a Data Breach Scanner — a tool that can scan the entire company’s domain list for potential breaches. Because the Data Breach Scanner issues a notification to all members of the organization, the company potentially affected by a breach can act quickly and efficiently to contain it.

The NordPass Password Health tool can help you detect potentially weak, old, or reused passwords throughout the organization and significantly reduce the risk of unauthorized access.

Bottom line

These days, regulatory compliance is an inseparable part of running a business. Fail to comply and be ready to face hefty fines and serious reputational damage. However, compliance is never easy. But with the right tools at your disposal, the whole process can be a lot smoother.

NordPass Business can be a tool to assist organizations in meeting various requirements in an easier and more efficient way. By staying compliant, organizations can not only avoid costly fines and legal issues, but also gain a competitive advantage by building a culture of transparency and credibility with their customer base or investors.

You’d be hard-pressed to find someone who doesn’t care about their privacy. It’s human nature. You want control over what private information you share and who you share it with. Unfortunately, you can lose this control with a careless click.

What is private data?

Private data is anything that reveals information about you. It can be your name, your photos, your posts on social media, your email addresses, or your IP.

Some of these details are highly sensitive, including your banking information, genetic data, health records, social security number, and home address. As a rule of thumb, any information that could cause you financial or reputational damage can be considered sensitive.

What is data privacy and why is it important?

Data privacy, also known as information privacy, generally refers to a person’s right to choose for themselves when, how, with whom, and to what extent they want to share their private data with others.

As internet usage has become ubiquitous over the years, so has the importance of data privacy and protection. Various websites and applications often collect your private data in exchange for its services.

Some platforms and applications may exceed their reach when it comes to data collection, storage, and usage. Others may have a lax attitude toward private data protection.

The key questions to ask when talking about data privacy are:

1. Who has access to information about you?

2. Who controls this access?

3. Is it secure?

When private data falls into the wrong hands, consequences can be dire. A data breach on an online platform could put your sensitive information into the hands of cyber crooks. Users whose data is leaked are put at risk of identity theft, bank fraud, and other online-related scams and crimes. These days, data is king and there’s no way around it. Thus, it’s not surprising that protection is paramount.

Your privacy in the hands of the government

Various entities handle your private data. First – the government and its institutions. Let’s take the justice system as an example. You cannot go to court or file a claim without revealing your identity. And that’s fine — it wouldn’t be fair to the other side if you were suing them anonymously.

Similarly, you can’t get public services (for example, electricity, a high school education, or healthcare) without identifying yourself.

In a perfect world, the government does not infringe upon your privacy more than necessary. In the real world, some governments store every bit of data they can get their hands on. Even worse, others engage in mass surveillance of their citizens.

Your privacy in the hands of businesses

You can buy apples at a fruit stand and remain a stranger to the vendor. But buy apples online, and you’ll give away private information about yourself. It may be a fact as simple as you liking apples. This information will be sold to an advertiser, and the next time you go online, an ad for apples will pop up on your screen.

Almost everything you do online leaves a data footprint. You have little control over how your digital footprint is collected.

Usually, it works like this. Before you start using a new online service, you have to read a wall of fine print. But you don’t, because who has time to wade through paragraphs of legal jargon? You click “Agree,” and that’s how you begin to give away your private data. The agreement can’t be changed, and you cannot bargain — take it or leave it. This service will collect your data and use it for marketing purposes or sell it to the highest bidder. And there’s nothing you can do.

It’s easy to say “Don’t use these services.” The problem is that most online services collect information. If you want none of your private data on the internet, you have to quit using the internet. And that’s a price most people find too high to pay.

Data protection laws

Over the years, as technology and the internet came to be an inseparable part of our lives, governments around the globe took part in creating and passing laws regulating private data. Most countries today have various laws governing data collection, storage, and usage. Here are some of the most important and impactful ones:

The General Data Protection Regulation (GDPR)

The GDPR regulates data privacy laws across all EU member countries. It was designed to replace previous data regulation laws and provide greater protection and rights to individuals, essentially giving subjects the right to control their personal data and ensuring the right to be forgotten. The GDPR also outlines how individuals’ private data should be collected, stored, and used as well as outlining the limitations. The GDPR is one of the most impactful and comprehensive regulations developed in the past decade.

Data privacy laws in the US

At the moment, the United States has no federal law or legislation that comprehensively addresses data privacy. However, individual states have enacted their own laws and regulations to address issues of data privacy in different industries such as healthcare, finance, and marketing. But, even with all these different laws and regulations, there’s still one important agency that helps to make sure everyone is following the rules.

The Federal Trade Commission (FTC) is the agency that oversees data privacy regulations and ensures consumer protection. The FTC Act grants the organization the authority to prevent unfair or deceptive trade practices and enforce privacy laws.

The FTC can take action against organizations that fail to implement reasonable data security measures, violate consumer data privacy rights, or engage in misleading advertising practices.

There are also other federal laws that govern the collection of information online, such as the Children’s Online Privacy Protection Act (COPPA), the Health Insurance Portability and Accounting Act (HIPAA), the Gramm Leach Bliley Act (GLBA), the Fair Credit Reporting Act (FCRA), and the Family Educational Rights and Privacy Act (FERPA). These laws focus on ensuring the protection of specific types of information, such as data related to children, health, and finances.

National data protection laws

Many countries around the world, including Australia, Canada, and Japan have comprehensive data protection laws in place that outline the ways personal data should be handled, much like the GDPR.

Important data privacy and protection trends for 2023

Increasing use of AI and ML in data protection

As we move into 2023, the use of artificial intelligence (AI) and machine learning (ML) in data security and privacy is becoming increasingly prevalent. AI can be a powerful tool for protecting consumer privacy.

In 2023 we’ll start seeing an increase in the use of both AI and ML to proactively identify and prevent cyber threats and detect patterns that may indicate a potential data breach.

However, data protection through automation has not yet advanced as much as we would like. Nevertheless, in 2023 and beyond, we can expect to see significant improvements in this area as the technology matures and becomes more suited for ensuring the privacy and security of sensitive data.

Data security and privacy will be a priority for consumers

Because data breaches are more common and sophisticated than ever, consumers are unsurprisingly becoming more vigilant about the security of their personal information. Increasingly more people these days are being selective about who they trust with their data. A company’s data-sharing practices and policies now are a crucial factor for many consumers.

In 2023, businesses should be ready for increased scrutiny around their data security and privacy practices. If you are a company that looks to succeed this year, it is vital for you to earn and maintain the trust of your clientele by being transparent about your data protection approach. Trust is a two-way street, and in today’s digital age, it’s more important than ever.

Increasing collaboration between government entities and private companies

Because a decrease in cyber criminal activity is nothing we can bet on in 2023, expect to see heightened levels of collaboration between private companies and government entities aiming to improve data security and privacy.

The collaboration between private and government entities may take many forms, from joint research and development of new security technologies and processes, to more information-sharing in an effort to craft well-rounded regulatory mechanisms.

The rise of passwordless authentication and regulation of biometric data

Passwordless authentication methods are already gaining popularity due to their convenience and security benefits. In 2023, we can expect to see more online service providers adopting various forms of passwordless authentication.

The major advantage of passwordless authentication is that it eliminates the need for users to remember and manage multiple passwords. Additionally, passwordless authentication greatly reduces the risk of password-related security breaches. However, most passwordless technology leverages biometric data for authentication purposes and 2023 might be the year when we will see more regulatory entities coming up with standards and requirements to ensure the secure storage and handling of biometric data. We might see laws and regulations establishing best practices as well as penalties for entities that fail to comply with such standards.

What can you do to protect your data privacy?

Information privacy will become an even hotter topic once technologies create more invasive tools. You’ll be surrounded by facial-recognition cameras, smart speakers that listen to your conversations, e-textiles, wearable health monitors, and other data-gathering gadgets.

That means you must take action now:

• Foster healthy online habits. Refrain from publicly sharing your personal information on social media. Leverage privacy settings and make your social media profiles private to limit exposure. Be weary of attachments or links in emails that come your way from unknown senders. Make use of multi-factor authentication (MFA) and enable it on your online accounts whenever possible. Use strong, unique passwords for all your accounts and employ a password manager to securely store your passwords and other sensitive information.

• Use tools and services that enhance your privacy. Choose private search engines, private email providers, and privacy-focused browsers. And use encryption tools — they’re much more user friendly than they sound. NordPass itself uses state-of-the-art encryption to protect your passwords. In addition, NordVPN makes sure your traffic is invisible to your internet service provider.

• Don’t need it? Then don’t use it. Don’t sign up if you don’t really need the service. And if you do need it, read the fine print before clicking “Agree.” If the fine print is too complicated, look for comments and reviews regarding the service’s privacy policies.

Fight for information privacy and make the internet better for all.

NordPass 3.51

Happy New Year, NordPassers. We’re starting the year with a few important updates. Here’s what to expect in this release:

• B2B TOTP. It might sound like random letters pieced together, but this means that NordPass Business users can now use TOTP functionality on Android devices. How exciting is that?

• AUTOFILL ISSUE REPORTING BETA. Is autofill not working as expected on your favorite browser? You can now tell us what’s wrong. Look for the Feedback (Beta) when filling in passwords.

NordPass 3.50

This time we worked on nitty gritty details to make your password management experience even smoother. Here’s what to expect with this release:

• MORE BROWSERS WITH BETTER AUTOFILL. We added native autofill support to Tor, Via, Phoenix, Maxthon; meaning that if you use any of these browsers it will now be easier for NordPass to recognize input fields and fill your passwords.

• MINOR DESIGN CHANGES TO AUTOFILL SETTINGS.

• BUG FIXES.

NordPass 3.49

We’re happy to present you with a new release. Here’s what we’ve got this time:

• UI IMPROVEMENTS. New users will see an updated onboarding design, while the veterans will notice slight changes to the new password history feature.

• BUG FIXES.

NordPass 3.48

No big announcements from us this time. However, we hope you’ll still enjoy an updated NordPass version with fewer bugs.

NordPass 3.47

We’re happy to present you with a new release. Here’s what we’ve got this time:

• RATE NORDPASS IN-APP. Are you enjoying NordPass so far? Look for a pop-up to rate NordPass and help others choose their password manager.

• AUTOFILL IN VIVALDI BROWSER. You will now fill your passwords and other information easier when using the Vivaldi browser.

• IMPROVED AUTOFILL FOR OTHER LANGUAGES. If your browser is set to your local language, autofill will now pick it up quicker and help you save your passwords.

NordPass 3.46

No major updates this time, just a new and improved app release with fewer bugs for you to bump into – enjoy!

NordPass 3.45

Building good things takes time. So since the last release, we have focused on catching and eliminating pesky bugs.

NordPass 3.44

It’s a big day today. Premium users, get ready. From now on, you’ll be able to monitor breaches.

Your Breach Scanner can now scan breaches while you sleep. Set up an email you’d like us to monitor and will check breaches for you. If we find your email, we’ll notify you so you can take immediate action and protect your data. Look for this new functionality by going to the Breach Scanner.

P.S. We also fixed some bugs to improve your overall experience.

NordPass 3.43

No big announcements from us this time. However, we hope you’ll still enjoy an updated NordPass version with fewer bugs.

NordPass 3.42

This time we’ve waved bye-bye to some pesky bugs and have also spruced up the place a touch – enjoy!

NordPass 3.41

We’re happy to present you with a new release. Here’s what we’ve got this time:

• PROFILE PHOTO. You can now add your favorite photo instead as your profile icon. With a customized profile icon, it’s easier to recognize your profile when sharing items or switching accounts.

• NATIVE AUTOFILL ON BRAVE. This means your autofill and autosave experience has just leveled up. It will now be easier for us to recognize password fields and fill in your information.

• BUG FIXES.

NordPass 3.40

Building good things takes time. So since the last release, we focused on catching and eliminating pesky bugs.

NordPass 3.39

No big announcements from us this time. However, we hope you’ll still enjoy an updated NordPass version with fewer bugs.

NordPass 3.38

This time we’ve waved bye-bye to some pesky bugs and have also spruced up the place a touch – enjoy!

NordPass 3.37

Building good things takes time. So since the last release, we have mainly focused on catching and eliminating pesky bugs.

NordPass 3.36

A new week and a new NordPass release. Here’s what we’ve got:

• NEW SETTING: CLEAR COPY ITEM DATA. When you copy your password or other item data, it’s typically saved in the clipboard. To avoid pasting it somewhere you didn’t intend; you can now choose the clipboard to clear after a set time.

• LITHUANIAN LANGUAGE. For our Lithuanian friends out there, you can now use NordPass in your mother tongue. Simply head to Settings to change the language.

• BUG FIXES.

NordPass 3.35

We’re happy to present you with a new release. Here’s what we’ve got:

• SWITCH ACCOUNT. A long-awaited feature is here! If you have a few NordPass accounts, like personal and business, switching between them will now be a breeze. Just click on your profile account and look for a “Switch Account” button.

• CARD PIN. From now on, you can also add your PIN when saving your card details. Don’t worry; it won’t be autofilled. It’s for your reference only.

• BUG FIXES.

NordPass 3.34

Happy pancake day, people! Though if it were up to NordPass, every day would be a pancake day. In the meantime, while you are enjoying your pancakes, donuts, or pastries, we are presenting you with a new NordPass release with fewer bugs.

NordPass 3.33

Our bug busters have been working hard since the last time you heard from us. That’s why today we can proudly present another NordPass release with even fewer bugs. We hope you’ll like it.

NordPass 3.32

Did you know that January has one of the most depressing days? It’s called Blue Monday, they say. Good that it’s over. But if you are still feeling a little bit blue, here’s what you can do to survive this winter:

• Enjoy the outdoors, go for a walk or take up a new sport;

• Connect with a long-lost friend or family member;

• Run the Data Breach Scanner and update your vulnerable passwords. Once you do, select “Resolved” for the updated passwords and they won’t appear next time you run the scan.

NordPass 3.31

Like last year, in 2022, we’ll strive to become a better, smoother-running, and more user-friendly app. So why not start with this week? We present you with a new NordPass version with fewer bugs and Autofill issues.

NordPass 3.30

We hope you are not sick and tired of Christmas songs, even if you’ve heard them a million times before. And we hope that you are not stressed buying last-minute presents or thinking about a Christmas menu. But if you’re, it will all be ok.

After all, ‘It’s the most beautiful time of the year.’ Merry Christmas!

P.S. And here’s a new NordPass release to bring you a little cheer.

NordPass 3.29

Did you know that if your password is ‘ginger,’ it would take a hacker less than 1s to guess it? If you use NordPass, we know you can do better than that. Create strong and unique passwords with your NordPass mobile app, and don’t let any Grinch steal your Christmas (or your accounts) this year.

NordPass 3.28

It’s 5 weeks until Christmas! Yes, it’s time to buy presents for your loved ones. But do you sometimes slip and buy gifts for yourself instead? Because we do. Don’t tell this to anyone.

So if you slip this year, don’t worry too much about it. You can save up to 75% of NordPass Premium plans and give the so-needed peace of mind for you and your family guilt-free.

We’re making the NordPass app for Android better, smoother, slicker – one release at a time. How exactly? Read all the highlights in our release notes and make sure to never miss a new version – we want you to get all the best stuff.

NordPass 3.27

–Beep beep– app update incoming:

• Native autofill on Chrome. Simply put, Nordpass is now better at recognizing login fields. It means smoother and faster autofill!

• Data Breach Scanner update. If you use a leaked password for several accounts, the app will notify you about accounts put at risk. Remember to update them!

• Title suggestions. Running out of ideas for naming items in your vault? No worries – NordPass will suggest using the website name for the title.

• Usual bug-fixing business.

NordPass 3.26

Trick or treat? Who are we kidding? It’s always just treated here at NordPass. So here’s our Halloween treat to you – a brand new NordPass release. Don’t worry, nothing to be scared of—just a smoother running version of your password manager.

NordPass 3.25

Getting your data stolen isn’t nice. But if that happens to you, it’s important to identify the stolen information and act quickly. That’s why from this release, you can use the Breach Scanner to find out the type of data that was leaked and see it in plain text.

We also wanted to improve our communication with you. So from now, if you open the app and see a red dot next to a bell icon, just know that it’s some important information from us to you.

NordPass 3.24

Seasons change. Leaves turn yellow and brown.
It might be sad, but don’t feel too down.
Just remember, your passwords are safe and sound.

And if you don’t like amateur rhymes, that’s fine.
With this release, you’ll have less bugs in your life.

NordPass 3.22

Good things are meant to be shared, right? That’s why now, when you invite a friend to try NordPass, we’ll award both of you with a free month of Premium (max 3 months). You can invite as many friends as you wish. Just head to the app, select “Invite a friend,” and send the invite.

NordPass 3.21

What do you have in the box this time NordPass? Well, let me see…

• Email or username suggestion. That’s right, now when creating a new item, you only need to enter a few letters in the username field, and NordPass will suggest filling it with one of your already used ones.

• Autofill fixes.

• Bug fixes, bug fixes, and more bug fixes.

NordPass 3.20

It’s the end of the summer, eh? You must be sad. Or happy? Maybe because you’ve just got NordPass at the end of summer sale. Or perhaps you live down under, and it’s actually not the end of the summer but the end of winter. Either way, we hope you’ll enjoy a new NordPass version with fewer bugs and more love.

NordPass 3.19

Random fact of the day: Did you know that there’s a bunch of ladies working at NordPass? Yes, we don’t follow any stereotypes here. So in this release, we want to thank all the women who tirelessly and continuously work to make NordPass a better password manager.

NordPass 3.18

Hola! Last week we presented you NordPass in Italian. Can you guess what we have in store this week? Yes, that’s right. NordPass is now available in Spanish! Head to Settings to update your language preferences.

And, of course, we continue to work on any pesky bugs you or we identify. Bye, bugs!

NordPass 3.17

Buongiorno! What a year this was for Italy. First the Eurovision, then Euro Cup, and now, coincidence or not, NordPass. Yes, you are right, you can now use NordPass in Italian, and it doesn’t matter if you are enjoying the sun in Rome or simply practicing your Italian skills. You can change your language preference in Settings.

And of course, what release is without bug fixes? We crushed them too.

NordPass 3.16

Hey NordPass user, do you like scrolling? Not when I’m looking for a password, you will say. Yeah, we thought so. That’s why we introduced a quick scroller. Now when scrolling through your items, you’ll see that they are grouped. Go on, find your passwords with ease.

P.S We have also resolved those pesky bugs. Bye-bye, bugs.

NordPass 3.15

Searching for bugs…
Loading…
Loading…
Bugs found…
BUGS FIXED!

*Works only if you install the update first to put those BUG FIXES in place. Stay safe and happy!

NordPass 3.14

Sharing is caring, right? Well, now you can select multiple items and share them all at once. Easy peasy. Just always make sure you trust the people you share your credentials with.

NordPass 3.13

You know that moment when you create a super-strong password with NordPass Generator and forget to save it? Yeah, we’ve been there too. That’s why you’ll now see a little clock icon in your Generator. Tap on it to see previously generated passwords.

And, of course, we won’t release a new NordPass version without getting rid of as many bugs as possible.

NordPass 3.12

You want strong and unique passwords, simple – you generate them with the Password Generator. But what if you want a strong password you need to remember? Yes, we thought about this too.

So in this release, you’ll see some changes to your Password Generator. Now you can generate passwords made out of words, spaces, hyphens, and much more. How cool is that?

NordPass 3.11

We’re coming back with a bunch of updates to help you make your accounts even more secure.

• PASSWORD HEALTH INTEGRATION. You can now see how healthy your password is by opening the item — no need to go to Password Health. If your password could be stronger, you’ll see “weak, old, or reused” next to it.

P.S. There’s more. We’ve fixed a ton of autofill bugs for a smoother login experience.

NordPass 3.10

Are your passwords healthy or vulnerable? If you haven’t checked it yet, now is a good time. We’ve just revamped the Password Health tool, and it’s looking better than ever. It’s so much easier to use too. Check it out.

Anything else? Of course! Our team is continuously working on improving the Autofill feature so that you’d have a smooth one-click-to-login experience.

NordPass 3.9

If you haven’t tried the Breach Scanner yet, now you have a reason. We completely revamped the design. Oh boy, it looks even more pleasing to the eye.

What are you waiting for? Go and make sure your accounts are secure.

NordPass 3.8

Bonjour. Comment ça va? Yes, our French-speaking friends, this release is for you! NordPass is now available in French. Head to Settings and change the language.

In other news:

• LIMITED RIGHTS CHANGES. From now on, once you receive an item with Limited Rights, it’s for you only. No further shares allowed.

• B2B GROUPS. NordPass Business users say hello to Groups. Now it will be easier to share passwords with a group of people all at once. Think, your Marketing or Finance department.

NordPass 3.7

Sometimes what we do is either too difficult to explain or too difficult to see. Yes, you guessed it. This week we put all our effort into finding and getting rid of bugs. We hope we’ll have something more exciting for you next week.

NordPass 3.6

Sprichst du Deutsch? Then we have good news for you. You can now enjoy NordPass in German. Just go to your settings and change the language.

But that’s not it. We have some exciting news for anyone who speaks french too. Stay tuned. 😉

NordPass 3.5

This release theme? Fixes, fixes, and more fixes. Quality over quantity. So what did we actually do?

• Found and got rid of your beloved dark theme bugs.

• Improved Autofill by killing nasty bugs.

• Other teeny-tiny bug fixes.

NordPass 3.4

No breaking news this time. We know. We’ll do better! Just business as usual and a ton of bug fixes for a smoother app experience.

NordPass 3.3

Guten Tag, – says NordPass. Yes, that’s correct. If your phone’s default language is German, you can now enjoy NordPass in your preferred language. Anything else? Of course! More bug fixes.

NordPass 3.2

Well, hello there. It’s NordPass calling with a shiny brand new release. Here’s what we’ve got:

• CHANGES IN 2FA SETUP. Now two-factor authentication will be set up for your Nord Account and applied to all Nord products you might use.

• AUTOFILL AND AUTOSAVE ISSUES FIXED, so you could continue saving and filling passwords quicker than you can blink.

• DARK MODE BUGS FIXED. Minor bugs were found since we released the dark mode. Nothing to worry about; they are now gone.

NordPass 3.1

Still recovering from the last release? If you haven’t heard (or seen it yet), you can now enjoy NordPass dark mode!

Unfortunately, we are not superheroes, so we can’t drop any big news today. Plus, it wouldn’t be fun this way. So this time, we worked on some maintenance tasks to keep your app running smoothly:

• COPY CHANGES to help you navigate through the app.

• AUTOSAVE ISSUES FIXED to help you save those passwords in a click.

• BUG FIXES. Because no release is complete without them, right?

NordPass 3.0

Where’s the drumroll, please? You ready? You’d better sit down for this one. I’m serious; sit down. OK, you’re finally sitting.

I’m just scared you’ll fall and hurt yourself once you hear this, that’s all. Oh, I know. It’s so annoying when someone is creating tension but not telling you what this is all about, right?

Well, OK, not long to go. Let’s count together.

One.

Two.

Three.

You can now enjoy NordPass Dark MODE!

Fireworks shooting in the distance

NordPass 2.17

Ready, set, new release! What can you expect to see in the new and shiny NordPass 2.17?

• AUTOFILL FIXES. Slowly but surely, we are conquering the net and one website at a time, making signing in easier than ever. Magic x2!

• ADD CREDIT CARD WITH NFC. Yes, you heard it. You can now scan your credit cards and keep them in NordPass by simply touching your card against your phone. Magic!

NordPass 2.16

8 letters, 2 words, one meaning.

9 letters, 3 words, one feeling.

We felt kind of nervous to say it out loud… But again, they say – don’t talk, just act. So we’re bringing you yet another collection of chocolate-flavoured, hand-picked BUG FIXES to express how much WE LOVE YOU. Please update to enjoy even smoother app experience.

NordPass 2.15

Once upon a time, a password manager named NordPass lived. They wanted to become the best password manager there ever was, and did it one release at a time.

• AUTOFILL ISSUES FIXED. Salvador Dali said not to fear perfection as we’ll never reach it, but we’ll still give it a good go.

• QUICK ACTIONS ADDED. Just click on the app and quickly access Password Generator, search your items, or add a new password.

• TOOLS AND MENU REWORK. Now you can enjoy a much cleaner and Menu, Settings, and Tools tab.

NordPass 2.14

AbraCadabra boom! No, it’s not magic. It’s just your passwords and credit cards information filling in quicker and smoother than ever before. Bye-bye, annoying bugs who tried to stop you.

What else can you expect in this release? Some copy changes to make the app easier to navigate, and we are super excited to share with you some news – Dark theme is coming soon.

NordPass 2.13

New Year, new NordPass release. Here’s what you’ll see in the latest version:

• AUTOFILL IMPROVEMENTS. The sky’s the limit for this one.

• BETTER LOOKING ITEMS. Items with no accounts have just become more stylish, or in other words, more colorful.

• AUTOSAVE IMPROVEMENTS, so you could save your passwords in a blink of an eye.

• EASY-TO-UNDERSTAND PASSWORD FORMATTING. We hear you; telling apart 0 from O when creating passwords isn’t easy, but it will be from now on.

NordPass 2.12

Yeah, Christmas will be different this year. But we’ve still got something to spread a little cheer.

In this release, you will see:

• ITEM ACTION FIXES, which we noticed when scrolling through an item’s action list.

• COPY CHANGES to make your app easier to navigate.

• AUTOFILL FIXES, so you could smoothly log in to even more websites and apps.

• MULTISELECT AND SORTING. You can now select multiple items and move them to a specified folder or Trash and sort them by Title or Date Last Used.

NordPass 2.11

NordPass has turned 1 year old, can you believe it? We can honestly say that this year, we are the most grateful for YOU, our dear NordPass user. You, who believed in us and drove us to release one update after another.

So here’s one more. Full of even more design edits, bug fixes, and love:

MINOR DESIGN AND COPY CHANGES because who doesn’t like a good-looking app. AUTOFILL BUG FIXES, so you could log in to your favorite websites and apps quicker than you can count to three.

NordPass 2.10

• ADD/EDIT ITEM FIXES. Next time you add a new item, or edit an existing one, pay attention to the new design. Sleek, isn’t it?

• IN-APP SHARED ITEM NOTIFICATION. Someone shared an item with you? You’ll get a notification in your app instantaneously. Forget emails.

• BUG FIXES. No bugs allowed in our app.

NordPass 2.9

NORDPASS BUSINESS AVAILABLE ON ANDROID. Business people beware, it’s your time to shine. Fill in passwords on mobile browsers and apps (like a boss!), sign in to your accounts with a fingerprint (like a boss!), and never ever have those dreadful phone calls with Brian from IT because you forgot your computer password after a long long holiday (Ouch!).

NordPass 2.8

• SECURE NOTES FORMATING – FIXED. It looks like we’ve accidentally deleted text formating options on a previous app update. Sorry about that! Formating is back and now ready for your bold, italic or quoted notes more than ever before.

• DESIGN IMPROVEMENTS. A little treat for eagle-eye users – please welcome those charming menu icons and precise text formatting.

• AUTOFILL IMPROVEMENTS. No app update was or will be released without this one.

• BUG FIXES = smoother password-managing experience.

NordPass 2.7

• BREACH REPORT. Now this one may feel like a fun lottery, except the fact that it’s probably better not to ‘win’ anything. By clicking a ‘Scan’ button, you can find out if any of your accounts were ever caught in data breaches. Fingers crossed, they’re not.

• AUTOFILL IMPROVEMENTS. Even more websites are ready to autofill your passwords.

• DESIGN IMPROVEMENTS only eagle eyes will spot. We all know who lies in the details, right?

NordPass 2.6

• PASSWORD HEALTH CHECKER. If you hear someone coughing and no one is at home – that might be a password in your vault. Take a chance to use this new fancy tool for making your precious passwords stronger and happier (and accounts safer) without leaving the house.

• AUTOFILL IMPROVEMENTS. You probably might start thinking that we are making up this one each time, just to add something to the release notes. The truth is that with each update, we are getting closer to perfection.

NordPass 2.5

• NORDVPN. Nobody likes snoopers – especially online ones. Luckily, VPN helps. Look for getting NordVPN in Menu – surf the Internet privately, no matter where your path may lead you.

• AUTOFILL IMPROVEMENTS. Every time you tap NordPass icon to autofill, there’s an actual person who copies and pastes your login details. Wait, do they see your passwords?! No, of course not – they are trained to work wearing blindfolds. We hired more people to this department, so “auto”fill is now way better.

NordPass 2.4

They say – small changes make a big difference. Behold – the update with a bunch of app upgrades is here. Let’s see what we’ve got here:

• VISUAL IMPROVEMENTS. Mirror mirror on the wall, who is prettiest of them all? Well, our designer’s brush made some magic tweaks, so the answer is clear now – it’s those tiny cute little app icons. Lookin’ good!

• APP LOADING FASTER. Need for speed? You’re welcome! Fasten your seatbelt and put the pedal to the metal – the project “Make the app faster” was completed successfully.”

• BUG FIXES. Dear sneaky bugs, thanks for visiting, farewell, let’s never meet again.”

NordPass 2.3

• AUTOSAVE. We’ve invited web browsers and mobile apps to the summer password-training camp. Result: those who attended will now suggest saving your credentials to the vault. Whenever you type them manually.”

• OTHER IMPROVEMENTS. We also did some tinkering under the hood to make your password-managing experience even smoother.”

NordPass 2.2

• PERSONAL INFO. Ready to fill online forms even quicker? Keep your name, email, phone number and address in the vault to fill delivery info or other online forms. Faster than ever.

• AUTOFILL IMPROVEMENTS. Brought to life by popular demand, the project “Make autofill better” was completed successfully. The result: the app automatically fills your credentials on even more apps and websites.

NordPass 2.1

• ADD ITEM TO FOLDERS. Instantly – when creating or editing an item. Just select a folder, and you’re good to go.

• VISUAL IMPROVEMENTS. Mirror mirror on the wall, who is the prettiest of them all? FYI, our designer’s brush made some small visual improvements in the vault. Lookin’ good!

• AUTOFILL IMPROVEMENTS. You report – we improve. Win-win!

NordPass 2.0

APP DESIGN IMPROVEMENTS. Here you go. A piece of nicely, freshly baked update – straight from the oven. Enjoy these deliciously sweet visual improvements and improved password-managing experience. Bon Appéti

NordPass 1.9

• NORD ACCOUNT. Meet new and simplified way to sign up and log into NordPass.

• STRONGER MASTER PASSWORDS. Added some guidance for leveling-up your Master Password. For even better vault protection.

• UPDATED SHARED ITEM VIEW. An easier way to find out who has access to shared items.

• AUTOFILL IMPROVEMENTS. More websites will be pleased to autofill your credit card details. Faster online checkouts FTW.

NordPass 1.8

• SWIPE DOWN TO SYNC ITEMS. The best thing since sliced bread – refresh the vault by swiping down to sync your items across devices.

• INTERFACE CHANGES. No more going ‘home’ to find the item you need. Browse vault categories to browse items.

• You say ‘AUTOFILL’, we say ‘IMPROVEMENTS’. Nothing else to add but even smoother app experience.

• ADD LOGIN – AT FLOATING BUTTON. All you need is milk and cookie – for adding new logins. One more addition for native browser lovers!

NordPass 1.7

• SETTINGS – SAVED. The app was sometimes forgetful about your settings. It went through some memory training, and things are now much better – no more forgotten preferences.

• PASSWORD GENERATOR IMPROVEMENTS. Strong passwords everywhere – generate some while creating new logins.

• TEXT FORMATTING. Jazz up your notes – make them bold, make them italic – make them FUN.

• AUTOFILL IMPROVEMENTS. Autofill is now multilingual – fill in credentials to even more websites and apps.

• Also, fewer app crashes.

NordPass 1.6

This update is oddly satisfying. Meet and greet:

• FOLDERS. All that sorting, managing, organizing, arranging, categorizing, and many more synonyms to describe one thing – that pleasure putting your items in order. Or in folders – just as you like it.

• COPY SELECTED TEXT. You can now select only a part of the text in your note. Finally! Smoother copying – faster pasting.

• TEXT UPDATES. The magic of great copy in the app is invisible – you might not notice it, but it helps to do the job.

NordPass 1.5

Let’s run the password-managing world with this update:

• AUTOFILL improvements. More supported browsers, more flawless autofilling and saved time.

• PASSWORD GENERATOR. We’ve heard you, and now we proudly announce: password generator is ready at your command. Let’s begin the new ge-ne-ra-tion for stronger passwords.

• Our designers and copywriters felt inspired by their muses, so they added some nice brush flicks at the app. Hopefully, we’re getting closer to becoming a piece of art someday.

NordPass 1.4

Are you ready? Here’s what’s new with NordPass:

• NATIVE AUTOFILL feels like heaven. Those cosmic odysseys of saving new passwords to the vault are so intuitive, fast, and smooth like never before. Relax and enjoy the journey.

• Look, mom, no hands! Meet FACE UNLOCK – an amazing addition to accessing your vault with biometrics. Put that p-p-p-poker face on and unlock NordPass on the go.

• Some minor bugs were caught and added to our trophy collection.

NordPass 1.3

Hey you! What’s new with NordPass:

• Vault SCREENSHOTS. You may now screenshot not only your crush’s stories on social media but also your vault. Of course, you can also disable them for even better protection of your vault. Handy, right?

• DESIGN IMPROVEMENTS. Better looks = better quality = better navigation.

• ITEM IMPORT from mobile browsers. No fancy words needed – it’s simply an awesome feature itself.

• Some minor catches at the bug-hunting department. Bang!

NordPass 1.2

We woke up like this. What’s new with NordPass:

• Tap tap tap. All flawless, shiny and new interface for tablet fanboys and cheer girls. Enjoy scrolling your vault miles away on a bigger screen.

• Scan scan scan. Texts, books, magazines, credit cards, road signs, billboards – whatever your heart desires. It’s a kind of magic.

• Fix fix fix. Minor fixes under the hood – nothing too fancy, just making sure to be the coolest guy on the block.

NordPass 1.1

NordPass has leveled up!

IN:

• ITEM SHARING. Sharing is always about caring. From now on you will be able to share your items in the vault via phone. Safe and easy, of course.

• IN-APP PURCHASES. Forget password stress without getting off the couch – you can now upgrade to NordPass Premium with a few taps on your screen.

OUT: various small bugs. Goodbye fellows, it was nice to meet you but we doubt we ever miss you.