1Password has introduced a new security feature designed to reduce the risk of phishing attacks by warning users before entering credentials on suspicious websites.
The update adds visible pop-up alerts when users visit risky URLs, including domains that closely resemble legitimate sites but may be controlled by attackers.
Why were warnings added to 1Password?
Password managers already provide some built-in phishing protection by disallowing autofill credentials on websites that don’t match the saved login URL. However, this protection is not foolproof.
If users find that the password manager has not loaded correctly or the domain name appears trustworthy at a glance, they can still enter credentials manually. Typosquatted domains, which rely on subtle spelling differences, remain particularly effective at bypassing user awareness.
According to 1Password, this difference is large enough to justify an additional warning layer.
How new alerts work
When a potentially malicious page is detected, 1Password displays a pop-up warning prompting users to slow down and double-check the site before continuing. Alerts do not block access completely, but are instead intended to interrupt risky behavior when it matters most.
This feature is automatically enabled for Individual and Family plan users. Business and enterprise customers can enable this through authentication policies in the 1Password admin console.
Phishing remains a widespread problem
1Password says the change is a response to the increasing effectiveness of phishing campaigns, particularly campaigns aided by AI tools that help attackers enhance and polish their scams.
In a survey conducted by the company, more than 60 percent of respondents said they had been successfully phishing at least once. Three out of four admitted that they do not regularly check URLs before clicking on links. In workplace environments, password reuse and unreported phishing attempts remain common.
Even when technical security measures are in place, these behaviors increase the risk of account compromise.
A small change with practical impact
The new warning system does not replace existing protection, but it adds timely visual cues that many users did not have before. By drawing attention to suspicious domains before entering credentials, 1Password is attempting to reduce mistakes caused by habit, haste or overconfidence.
This feature is just rolling out and does not require manual activation for most individual users.
