By random luck Firefox warned me that I was pwned and listed a number of data breaches. In the ideal case, Bitwarden should create a workflow that would lead me to every site where a breach occurred and ask me to change the password there.
Is there something similar - or am I to run such workflow manually?
Hey @adriatic currently reports are run manually but the team is looking at implementing vault health dashboards with real time reporting. When you tap a report it shows a list of related accounts and you can use the launch button in Bitwarden to open the website, then in Bitwarden tap the generator icon to create a new password: https://bitwarden.com/help/generator/
Most vault health reports are only available for premium users, including members of paid organizations (families, teams, or enterprise), but the Data Breach report is free for all users.
I’ve never gotten one of those notices from a browser or PW manager. I have to say I’m leery of them or havibeenpwnd (sp?). I believe they add another attack vector into the mix (via their own transmitting my email addresses). But I could be 100% wrong.
It sounds like it was a Firefox Monitor notification, but yes, always good to work from the source and not follow links from emails etc…
On a side note, HIBP is a wonderful and highly reputable project.
Many FAQs can be found here, but they have gotten to the point where even the FBI feeds data into HaveIBeenPwned for known breaches and to disseminate compromises faster.
You can also sign up for alerts directly, for example I was recently notified I was one of the many emails in this latest Twitter leak.
Funnily enough, I was going through and read this notification right as I learned of this leak as well, thanks blue bird 
As I said, I have zero knowledge on that subject so thank you for the information!
No issue at all, HIBP is what Bitwarden (and many others) use on the backend for some of these types of checks. Such as for leaked passwords, email breaches, etc.
Always good to know the ins-and-outs of a product and thankfully Bitwarden is fairly open about how they use some of the leading industry standards to best protect users.
Thank you @bw-admin your advice
Hey @adriatic currently reports are run manually but the team is looking at implementing vault health dashboards with real time reporting. When you tap a report it shows a list of related accounts and you can use the launch button in Bitwarden to open the website, then in Bitwarden tap the generator icon to create a new password: https://bitwarden.com/help/generator/
The utility at https://bitwarden.com/help/reports/#data-breach-report seems exactly what I hoped to find (even thought to do it myself for Bitwarden, if it did not exist).
Thanks for saving my good night sleep 
