A lot of the recent high profile hacks, eg Dropbox, seem to have happened when a company systems or employee's computer is compromised rather than an individual users logon details being cracked. Also given that more people are using password managers, getting access to the computers/systems of the password manager developers must be a pretty juicy target.
I understand the keychain is encrypted and only accessible by me using my master password. What are the risks of malicious code being inserted into 1password programs or apps?
What security 'protocols' do AgileBits use on their systems to prevent themselves being hacked or compromised in other ways e.g. social engineering?
If you would prefer not to comment, or in only the vaguest terms I will understand, but you are normally very open and don't seem to believe in security by obfuscation, so I thought I would ask as I couldn't see anything on your site about it.