If the 4.2 billion credentials that were leaked in 2016 is not enough motivation for users to update and strengthen their passwords, then nothing will. LinkedIn, Tumblr and Yahoo are just a few of the big names that were breached in 2016 and we are already seeing other big names like Gmail (phishing target) and Twitter (account hijacking) compromised in 2017.
We have reached a point where it would be impossible to remember every password that we need these days – most on a daily basis. Even an average netizen would be logging into email, social media and banking accounts on a weekly, if not daily basis, whilst the clear majority of us have need to have tens if not a hundred or more unique passwords for the sites we frequently visit. Herein lies the problem, we don’t have unique passwords. We use the same handful of passwords over and over with minor tweaks to ensure we remember them. The complex, long and clever passwords we create are hard to remember, defeating their purpose – passwords should be long, complex and easy-to-remember.
If you haven’t yet started using a password manager now is the time to do so. Here are the top nine reasons to put it off no longer:
You only need to remember one password, ever. Called your ‘master password’ this is the password to end all passwords, but you only need one. One unique, complex, long, strong password which after typing a few times, your fingers will get the hang of. For those concerned with storing all their passwords in one place, LastPass uses a good analogy to explain the security of password managers; imagine a password vault as a storage chest of all your most treasured possessions. You send the chest to a company but you still have the key (your master password). The company then adds more boxes and locks around your chest. If someone could smash through all the locks and boxes (which would take a very, very long time), the contents inside would be unreadable due to encryption methods. Password managers are much more secure than any common methods of storing passwords – post-its, as a contact in your phone, note-taking apps; even having your browser remember them.
You never have to create a password again. All good password managers can create strong passwords for you. Not only can they create them you may never even know what they are – if that’s how you use the service. When the password is created it’s invisible, it’s up to you if you want to make it visible or not.
It's more secure that your current password saving or remembering method. Reusing passwords is a bad idea, but it’s a frequent practise. As soon as your credentials are compromised on one site hackers will then use those credentials across all other popular websites potentially unlocking huge swaths of your data and identity. The other ways you are saving your passwords? Also bad: writing them down (anywhere), hiding them as a contact in your phone, using a note-taking app, post-its, having your browser remember them – none of these methods are secure enough or use good encryption methods (no, not even your browser).
You can share passwords with other people without them ever knowing what it is. This is particularly helpful for sharing with colleagues, family members and close friends if you’re all working off a common team or family account. You can also revoke access at any time.
They store more than just your passwords. They can store any information you like with secure notes features for recording card or account details, security questions or other important data like your tax file number. What happens to this data if something happens to you? You can nominate close family or friends to get emergency access if required.
Auto-fill web forms. Again, your web browser does not have the same level of security as password managers have. You should never let your web browser store or save any of your personal information or passwords, they don’t encrypt as thoroughly as a password manager. You can enter your contact details in your vault to auto-fill web forms as needed.
They sync across all devices. The leading password managers sync across all devices. You can hop from your laptop to tablet to your work PC and then to your Android or iPhone, and your data will still be available.
Security checks. Some password managers offer free security checks on your accounts. They scan all the passwords and logins you have saved in your vault and then flag any old, duplicate or weak passwords. Some managers even automate changing them for you.
They’re free. Majority of password managers are free or low-cost (the premium version of LastPass – dubbed one of the best by Gartner, Wirecutter and PC Mag - is only $12USD/year). PC Mag has done the hard work for you and compared all the best password managers of 2017 so you can make an informed choice about which is right for you.
There’s a reason why you hear about password managers all the time; they’re important. Although passwords are not the most secure way to lock your online data, they are the most prevalent and that’s not about to change. We have seen some mind-blowingly monstrous breaches in the past few years yet, according to CompTIA, we haven’t seen the one that has pushed companies to tighten their security and encryption methods. Don’t let your credentials be the ones leaked in 2017.
