It depends on your risk profile, but yes, it's less secure. For some people the convenience is worth the risk, for others maybe not. If you opt to store 2fa keys in Bitwarden you'd definitely want to enable 2fa for your Bitwarden account though, which brings us back to the same issue again.
dana
joined 11 months ago
It's not totally clear yet. My role is fully remote, so the info I have is second-hand from memos and word of mouth. The company has apparently been using an automated system to send scary emails to people not badging in (with their manager CCed), but I don't know what happens if you just ignore those. Memos have made vague threats of implications for performance reviews, but those haven't happened yet since they announced they would be tracking badge data.
My company only started cracking down on it a couple months ago. Nominally the majority of employees were supposed to be working in the office three days a week as of April 2022, but most of the roles don't require physical presence so people just kept working from home. Now the company has shifted to tracking badge data to make sure people are actually coming into the office, despite three years of data demonstrating we're just as productive as home...
To clarify, you'd want to enable 2fa for Bitwarden and store the token for that in a different authenticator app - that way you can still log in to Bitwarden without already needing to be logged in