Is there a way for a new user to a Cryptomator Hub ecosystem to do the initial handshake with the server in a way that cannot be snooped by a malicious party?
I am referring to that first attempt to unlock a vault where you have to enter in the Account Key. It may be a bit paranoid but a key logger or other software could allow someone to gain access to that key.
What if the malicious party is able to get the Account Key. Does that mean that they get your files or is there something I’m missing. My understanding is they could copy the encrypted drive to their machine and then use Cryptomator and the Account Key to add themselves to the team and unlock.