A Guide to the Bitwarden Client Apps
Bitwarden is the highest rated password manager on this website, and one of the reasons for its high rating is the comprehensive range of Bitwarden client apps. This article provides further information on the Bitwarden client application range. Bitwarden is a web-based password manager you can use to generate, save, and manage passwords safely and securely. This means that, unless you self-host Bitwarden (which is an option under...
How to Share Passwords Securely
Despite some sources suggesting that password sharing is a bad thing, families, friends, and work colleagues can share passwords securely. How else might your partner get access to a shared Netflix account, an elderly neighbor navigate a complex online transaction, or your marketing team get into corporate social media accounts? The problem is not so much that password sharing is a bad thing, it is how they are shared that´s the...
Association with Crypto Sees Customers Looking For 1Password Alternative
The 1Password password manager is one of the most popular password managers; however, a recent update that added new features to the platform has attracted criticism online, with 1password users taking to Twitter to voice their displeasure about the platform and several have stated their intention to switch to a 1Password alternative. Updates to software solutions that provide users with new features are usually a good thing, but it...
Free Cybersecurity Tools to Adopt to Improve Your Security Capabilities
Cybersecurity budgets are usually limited, so it is not possible to purchase multiple best-in-class cybersecurity solutions, but the good news is there are many free cybersecurity tools that can be adopted to improve security capabilities at zero cost. There is no silver bullet when it comes to cybersecurity. Several cybersecurity solutions must be used to protect against intrusions and detect and block attacks in progress, which can...
NSA Issues Best Practices for Choosing Cisco Password Types
The U.S. National Security Agency (NSA) has recently issued guidance on the use of passwords to secure Cisco devices. Cisco devices are extensively used to secure network infrastructure devices and Cisco devices are often targeted by cyber threat actors. There have been cases where cyber threat actors have gained access to the configuration files and have used the information in those files to compromise network devices. Configuration...
Safer Internet Day 2022: Improve Well-Being Online and Privacy and Security
Every year, a day is dedicated to making the Internet a safer place for children and young people; however, this year, rather than having a single day of activities, resources are being made available and events have been scheduled for every day of the week, with Tuesday, February 8, 2022, set as Safer Internet Day 2022. Safer Internet Day 2022 Each year has a different theme, and this year the event is focused is Improving Well-Being...
LastPass versus Dashlane
Our comparison of LastPass versus Dashlane suggests it can be worth paying a little extra for more security. However, when you compare LastPass and Dashlane to the rest of the password manager market, you see how overpriced these password managers are for the protection they provide. Password managers generally have two purposes. The first is to empower users to be more security-conscious when performing online transactions. The...
LastPass versus 1Password
Ever since LastPass announced it was limiting it free password manager service in February 2021, there has been a plethora of LastPass versus 1Password comparison articles aiming to attract dissatisfied customers from one password manager to the other. However, readers would be advised to think carefully before exporting their passwords out of LastPass and into 1Password, because there are better options. Ironically, the plethora of...
Bitwarden versus LogMeOnce
No comparison of Bitwarden versus LogMeOnce is going to be an apples-for-apples evaluation; for although both password managers operate under a “zero-knowledge” vault-based model for managing login credentials, payment details, and other data, there are significant differences between Bitwarden and LogMeOnce that may influence a user´s choice of one over another. Selecting a password manager often happens in several stages. A user (or...
California Attorney General Shares Tips for Avoiding Identity Theft
California Attorney General Rob Bonta has provided Californians with tips for avoiding identity theft and fraud in recognition of Identity Theft Awareness Week 2022. Identity theft is where someone steals an individual’s personal data and uses the information to impersonate that individual in order to commit fraud, such as opening lines of credit in the victim’s name. As more people now rely on online services for work and personal...
Zoho Vault Review
The Zoho Vault password manager is one of multiple productivity, collaboration, and online security products developed by the Zoho Corporation; but, whereas the provision of integrated solutions can sometimes mean quality is sacrificed for the sake the integration, our Zoho Vault review reveals that this password manager ticks most of the right boxes as a standalone product. Although most password managers have some degree of...
NordPass Review
Our NordPass review finds that the NordPass password manager is more than just an add-on for customers of NordVPN. NordPass can be used independently of the Virtual Private Network software to save and autofill login credentials, payment details, and addresses, which customers can access from a cloud-based web vault or numerous mobile and desktop apps. The NordPass is a relatively new password manager, having been launched in 2019...
Banking Trojan Masquerades as Android Password Security App
A password security app that is available through the Google Play Store that has been downloaded more than 10,000 times is actually a malware dropper that delivers a banking Trojan. The malicious app – 2FA Authenticator – was identified by security researchers at Pradeo and was discovered to deliver a banking Trojan called Vultur that targets financial services and steals banking information and other sensitive data. 2FA...
January 28, 2022 is Data Privacy Day – A Day to Take Steps to Improve the Privacy of Personal Data
Today is Data Privacy Day – An annual day with a focus on raising awareness of best practices for keeping personal data private and confidential along with the techniques and tools that can be adopted by all individuals to better protect them against data theft, identity theft, and other types of fraud. Data Privacy Day – January 28 – started as Data Protection Day in 2006 and was initiated by the Council of Europe. Two years later,...
Utilities Urged to Improve Password Security
Ransomware gangs often work with Initial Access Brokers (IABs) who provide access to organizations’ networks. IABs specialize in breaching organizations’ defenses, then sell access to ransomware gangs, who are highly specialized in the next phase of the attack. To gain an initial foothold in networks, IABs use a variety of tactics including exploiting known vulnerabilities that have not been patched, conducting brute force attacks on...
Analysis of Brute Force Attacks Confirms Importance of Long Passwords and Complexity
A researcher at Microsoft has recently conducted an analysis of more than 25 million brute force attack attempts that were identified across Microsoft’s sensor network and found that most passwords were sufficiently complex to resist brute force attacks. According to the analysis, more than three-fourths of the brute force attacks (77%) attempted passwords of between 1 and 7 characters, and only 6% of the attack attempts used...
Password Boss Review
Although Password Boss is allegedly “built for MSPs by an MSP”, our Password Boss review looks at the password manager from the perspective of individuals, family groups, and direct business users (rather than customers of Managed Service Providers) in order to determine how this option compares to other password managers competing in the public space. When we compile password manager reviews, we sometimes have to think outside the...
Almost 6 Billion Credentials Were Leaked Online in 2021
A new report from Atlas VPN has revealed nearly 6 billion accounts were affected by data leaks and data breaches in 2021, which made 2021 a record-breaking year for credential theft. Atlas VPN obtained information on data breaches from multiple sources and includes reported data breaches between January 1st, 2021, and December 31st, 2021. In total, more than 5.9 million unique sets of credentials were stolen or leaked online in 2021....
Padloc Review
The inclusion of a Padloc review in our password manager review series is attributable to the growing number of open source password managers on the market and the desire to make our review series representative of the market. Furthermore, although it has some shortcomings, the Padloc password manager is not a bad alternative to some better known commercial solutions. Open source password managers can have a mixed reputation. Despite...
New York Attorney General Issues Business Guide for Credential Stuffing Attacks
The Bureau of Internet and Technology at the Office of the New York State Attorney General (OAG) has issued a Business Guide for Credential Stuffing Attacks to raise awareness of the threat and offer advice on steps that can be taken to prevent and mitigate attacks. Credential stuffing is a type of brute force attack where credentials stolen in previous data breaches are used to gain access to other online accounts. Bots are used to...
How Do Hackers Steal Passwords?
You often hear about cyberattacks that utilized stolen credentials to gain access to business networks, but how do hackers steal passwords? In this article, we explain the most common methods used by hackers to steal passwords and provide some tips that will help you keep your passwords safe. Hackers ask what your password is The easiest way to obtain a password is to ask someone what it is. They are unlikely to tell you, but it is...
LogMeOnce Review
The LogMeOnce password manager claims to provide “password security with convenience”; however, as our LogMeOnce review demonstrates, there can be circumstances in which this password manager is neither convenient nor secure. One of the problems of developing a password manager is working out who your target audience is. At one end of the scale, there are password management “newbies” who understand the need for strong passwords and a...
Redline Malware Used to Steal Passwords from Browsers and Corporate VPNs
Redline malware is now the most commonly used information stealer and is being used in attacks on businesses and consumers. Redline malware first appeared in early 2020 and the number of victims has been steadily growing, and on some cybercrime forums, around half of all stolen credentials listed for sale have come from Redline malware infections. Redline malware is a commodity malware that is being sold on cybercrime forums for...
LastPass Denies Data Breach After Users Claim Their Master Passwords Were Used to Access Their Vaults
Several LastPass users have claimed their master passwords have been used by unauthorized individuals to access their password vaults, including individuals who claim never to have shared their master password with any other platform, which led to claims there had been LastPass data breach. The first attacks on users’ password vaults appear to have started on Monday, December 27, 2021. A password manager allows users to easily create...
LastPass Splits from LogMeIn to Become Independent Company Again
LogMeIn has announced that the password management company LastPass, which LogMeIn acquired in October 2015 for $125 million, will become an independent company once again. Since the company was acquired by LogMeIn in 2015, LastPass has enjoyed impressive growth, which has had 50% revenue CAGR over the past 3 years. Last year, the company changed its business model with a reduction in the functionality of its free product tier, which...
Survey: 90% of IT Leaders Guilty of Reusing Passwords
Bitwarden has released the results of its second annual Password Decisions Survey, which explored the technology being used by IT decision makers, the security risks they face and take, and their password management and password sharing practices. The survey was conducted on 400 IT decision makers by Propeller Insights. The survey confirmed that password manager solutions are now commonly used by businesses. 86% of respondents said...
30% of Security Breaches Are Caused by Poor Password Practices
Passwords can provide a very good level of security but many people are guilty of poor password practices. While there are now alternatives to passwords that provide a greater level of security, we are not yet at the stage when passwords can be retired and passwords are likely to remain the main method of securing accounts for some time to come. GoodFirms decided to take a closer look at password practices people to identify some of...
LastPass Review
Our LastPass review illustrates why, up until recently, LastPass was considered to be one of the best password managers for personal and business use. Unfortunately, recent changes to the password manager´s personal and business plans have reduced the level of service and value for money customers came to expect from LastPass. In February 2021, LastPass announced that users of its free service would no longer be able to synchronize...
Keeper Review
Our Keeper review investigates the company´s claim that the Keeper password manager is “the top-rated cybersecurity solution” and then compares its capabilities against other vault-based password managers to establish whether it is even a top-rated password management solution. The Home Page of the Keeper Security website makes some sweeping claims about the Keeper password manager. Not only is it (allegedly) “the top-rated...
1Password Review
Our 1Password review digs into the capabilities of “the world´s most-loved password manager” to establish if it lives up to its self-awarded title or whether you might enjoy a more rewarding relationship with one of its competitors. 1Password has been a popular password manager since its launch in 2006 – primarily due to its former software licensing model that allowed customers to purchase a one-off license and upgrade the...
Dashlane Review
Due to the frequency at which Dashlane updates its password manager, any Dashlane review is likely to be quickly out of date. Consequently, our review of the Dashlane password manager focuses on its core capabilities and how they compare against the capabilities of other password managers. So far in 2021, Dashlane has updated its web app and browser extension twenty times. There have been further updates to desktops app and mobile...
Bitwarden Review
Our Bitwarden review looks at the pros and cons of this vault-based password manager from several perspectives in order to assess its suitability for individuals, families, and businesses. We also compare Bitwarden´s capabilities and price against several other vault-based password managers to determine its value for money. Vault-based password managers are a category of password managers that offer more flexibility and security than...
Lockwise Password Management Support Comes to an End
Firefox has announced that from December 13, 2021, support for the Lockwise password management app will come to an end. That means updates will no longer be provided via the Google Play Store and Apple App Store. Lockwise was launched in 2018, initially as Lockbox, and while Firefox is not exactly a leader in password management, many people have relied on Lockwise for managing and storing their passwords. Part of the popularity is...
Bitwarden versus NordPass
Our comparison of Bitwarden versus NordPass shows there is very little to choose between the two password managers. However, individuals and businesses need to be aware of NordPass´ pricing policy before committing to a long-term subscription because the price you pay when you initially sign up for the service is unlikely to be the same when you renew your subscription. Bitwarden and NordPass are very similar vault-based password...
Bitwarden versus Keeper
Some comparisons of Bitwarden versus Keeper arrive at the conclusion that Bitwarden is the best free password manager, while Keeper offers a better premium service. However, these comparisons fail to mention that Keeper offers an extremely limited free service nor that many of its add-on premium services are provided as standard in Bitwarden´s premium and business plans. Furthermore, questions exist about the authenticity of Keeper´s...
Choosing the Best Password Manager
Over the last few years, various surveys have claimed that the average Internet user has more than 100 online accounts that require login credentials. While these claims are possibly inflated to serve a purpose, many of us have more than twenty online accounts we use frequently, and probably another twenty online accounts we use from time to time. Remembering the login credentials for each online account, especially those we only use...
Does Bitwarden, Dashlane, or Keeper Offer Stronger Password Security?
Most password managers offer strong password security in much the same way – by encrypting data at rest and in transit so if data stored in a password manager is accessed or intercepted by a third party who does not have the decryption key, the data is indecipherable. However, some password managers make it easy for third parties to access your passwords without a decryption key. Password manager decryption keys are most often derived...
Bitwarden versus 1Password
You don´t often see comparisons of Bitwarden versus 1Password due to Bitwarden being regarded as a popular free password manager and 1Password having terminated its free service for new customers in 2019. However, Bitwarden also offers premium, family, and business plans, and it is worth comparing the two vault-based password managers to see how their paid subscription services stack up against one another. We´ll start this comparison...
Bitwarden versus Dashlane
One of the most common reasons for data breaches is the use – and reuse – of weak passwords. As people become more aware of the threats to data maintained online, many are choosing to take advantage of password managers to create, save, and auto-fill complex passwords that are more resilient against password spraying attacks and mitigate the threat from phishing. However, not all password managers are the same. Some...
Survey Reveals Worrying Lack of Action by Consumers After Receiving a Breach Notification Letter
The National Institute of Standards and Technology (NIST) no longer recommends regular password changes for employees, as while updating passwords every few months does improve password security on paper, forcing employees to regularly change passwords does not improve security in practice. In fact, it often makes things worse as employees start with a strong password, and over time the strength of their passwords decreases. One of...
Which is more User-Friendly? Bitwarden, 1Password, or Dashlane?
To best answer the question which is more user-friendly – Bitwarden, 1Password, or Dashlane? – you have to look at the question from different perspectives. This is because someone who uses a vault-based password manager to save login credentials and autofill personal data is going to have different requirements to a business user or a system administrator. There are several factors to consider when evaluating the best...
Bitwarden versus RoboForm
When RoboForm launched in 1999, it was one of just a few password managers that worked across different devices and operating systems. It not only auto-filled usernames and passwords, but also payment details, addresses, and other personal information. Over time, the capabilities of RoboForm increased to satisfy customer demands, but how does it compare to a latest-generation password manager such as Bitwarden? More than twenty years...
Bitwarden versus LastPass
In February 2021, LastPass announced that personal users of its free password manager service would no longer be able to synch passwords, card details, and other sensitive information across all devices without upgrading to a Premium plan. Many users of the free LastPass service were inconvenienced by this change of policy and started looking for alternative password managers. One of the options considered by LastPass users was...
Ransomware Attacks on CNA, Colonial Pipeline, and JBS the Result of Minor Security Lapses
Ransomware attacks in 2021 have increased to record levels and no industry sector is immune. Cyber threat actors have become bolder and have conducted an increasing number of attacks on healthcare organizations, where the lack of access to systems and data has put patient safety at risk, while attacks on critical infrastructure have threatened food production and fuel availability. The escalation of attacks in the United States has...
How Does Bitwarden Compare to RoboForm and LastPass?
The Bitwarden password manager has lot of friends in the IT security industry due to being built on open-source software. Open-source software is regarded to be more secure and higher quality than proprietary or licensed software because it is constantly being reviewed and improved by the open-source community. However, platforms built on open-source software can also be difficult to use. Therefore, when Bitwarden was launched in...
How to Create a Strong Password
Do you know how to create a strong password? Many people think they do, but still create passwords that take seconds for hackers to crack. Here we explain how to create a strong password and offer tips for making passwords easy to remember, but difficult for hackers to crack. Updated Password Advice There is a lot of conflicting advice on how to create a strong password. What was considered to be a strong password a few years ago is...
Security Researcher ‘Hacks’ 70% of WiFi Passwords with Next to No Effort
A password is often the only thing that stands in the way of a hacker and a treasure trove of sensitive data. It is therefore important to set a strong, unique password for all accounts. Hackers often conduct automated attacks on accounts using lists of commonly used passwords and passwords previously compromised in data breaches. Accounts with weak passwords can often be compromised in a matter of seconds. While most people are aware...
Zoho Password Management Flaw Exploited by APT Actors to Deploy Web Shell, Trojan, and Info Stealer
Security researchers at Palo Alto Networks have identified a global espionage campaign that exploited a known vulnerability in the Zoho password management and single-sign-on platform, ManageEngine ADSelfService Plus. The flaw, tracked as CVE-2021-40539, affects version 6113 and prior versions of the ManageEngine ADSelfService Plus platform and is a REST API authentication bypass issue that allows remote code execution and a full...
Microsoft Warns of Increase in Password Spraying Attacks
Microsoft’s Detection and Response Team (DART) has issued a warning about an increase in password spraying attacks by nation-state hacking groups and cybercriminals. These attacks require little effort, and the rewards of a successful attack are high. Password spraying allows threat actors to obtain credentials, access internal systems, steal sensitive data, and install malware and ransomware. Password spraying is a type of brute...
What is the Best MSP Password Manager?
When you visit MSP community websites, it is rare to see a contributor asking what is the best MSP password manager. Typically, the contributor has a specific issue that can often be resolved by changing from one password manager to another – something that vendors´ representatives on community websites are very keen to recommend. However, while changing from one password manager might resolve a specific issue, it can also create new...
Iranian Threat Actor Conducting Password Spraying Attacks on Defense Companies
An Iranian threat actor is conducting a password spraying campaign targeting the Office 365 accounts of U.S. EU, and Israeli defense companies. Microsoft’s Threat Intelligence Center (MSTIC) first identified the campaign in late July and attributed the attacks to the Iran-linked DEV-0343 group. DEV-0343 has conducted more than 250 attacks on Office 365 tenants in that time, most of which have been conducted on US and Israeli defense...
Operator of Botnet Used for DDoS and Password Spraying Attacks Arrested in Ukraine
A hacker alleged to be the creator and manager of a powerful botnet consisting of more than 100,000 devices has been arrested by law enforcement officers in Ukraine. The unnamed hacker was arrested at his home in Prykarpattia and computer equipment was seized that was being used to control the botnet. The botnet was used by paying customers for a variety of attacks, including Distributed Denial of Service (DDoS) attacks, spamming,...
Majority of Americans use Same Password for Multiple Accounts
A new survey from Security.org has revealed 68% of Americans are guilty of a cybersecurity crime! Using the same password for multiple accounts. A password is often the only thing that stands between a hacker and an account containing sensitive personal data. A unique password should be created for each user account that has not been used at any other time in the past. In addition to being unique, the password needs to be sufficiently...
Third of Americans Have Tried to Guess Someone Else’s Password
A recent survey has revealed the extent to which people attempt to gain access to someone else’s account by trying to guess their password. The survey, which was conducted in 1,015 people in the United States by Beyond Identity, revealed 1 in 3 Americans has tried to guess another person’s password and 73% of them said they had succeeded at least once. 51.6% of those individuals had tried to guess the password of a romantic partner...
October is National Cybersecurity Awareness Month
2021 National Cybersecurity Awareness Month has kicked off with the goal of improving awareness of cybersecurity and the importance of adopting cybersecurity best practices to make it harder for hackers, phishers, and online scammers to succeed. Digital safety and security have never been more important, with cyberattacks on businesses at record levels and ransomware gangs conducting huge numbers of attacks. “Our Nation is under a...
Women and Minorities More Likely to Be Victims of Cybercrime
Just as there is inequality in life, there is also inequality online. Demographics play a big part in how individuals are targeted by cybercriminals and some groups of people are much more likely than others to be victims of cybercrime, according to a recent survey of 5,000 people in the United States. The study, conducted by Malwarebytes in partnership with Digitunity and the Cybercrime Support Network, is detailed in the recently...
CISA and FBI Warn of Nation State Hackers Exploiting Critical Zoho Vulnerability
A critical vulnerability affecting the Zoho single-sign-on and password management solution is being actively exploited by advanced persistent threat (APT) groups and has been since the start of August 2021, according to a joint alert issued by the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and the Coast Guard Cyber Command (CGCYBER). The vulnerability, tracked as CVE-2021-40539, is...
Bitwarden vs Keepass Password Management Solutions
Bitwarden, KeePass, and KeePassXC are all good password management solutions for personal use. If you are looking for a personal password manager, choosing between these three can be a difficult task. To help you make a decision, we have reviewed all three solutions and highlighted some of the key features of each. Bitwarden Bitwarden is an open-source solution and, as such, has had its code assessed by bug hunters and the open-source...
Best Linux Password Management Solutions
In the past, the demand for Linux password management solutions has been limited. Indirectly, the lack of demand was mostly due to the difficulty installing and troubleshooting proprietary software on Linux distributions (i.e., Oracle, Microsoft 365, etc.). Because of these issues, businesses were reluctant to use Linux distributions, developers stopped building Linux support into their apps, and businesses had no need to adopt Linux...
Best Small Business Password Managers
Choosing the best small business password managers is not as straightforward as you might think. Password managers for small businesses can vary in functionality and cost depending on the size of the business and the number of people who need access to business credentials. However, for a business of any size, it is important that passwords, credit cards details, and other information stored in the password manager are secure....
Password Recommendations from NCSC
The UK’s NCSC password recommendations have been refreshed recently and a new strategy is being shared that improves usability while also adhering to password strength requirements. There are many different schools of thought in relation to the creation of passwords, but all are based on the idea that passwords need to be complex enough so that they cannot be simply guessed, not only by humans, but also the algorithms used by hackers...
Password Management Security Review
Elsewhere on this site, we have compared commercial password managers for their ease of use and for their effectiveness as replacements for browser-based password managers such as Chrome and Firefox. We have also suggested why certain options are better for small businesses, where the skills may not exist to manage API integrations, directory synchronizations, and complex configurations. In this article, we´ll be looking at password...
NCSC Recommends Against Arbitrary Password Complexity Requirements
The UK National Cyber Security Centre (NCSC) has made new recommendations for password creation that are intended to ensure passwords meet requirements for complexity while also making them easy for users to remember. While the latest password guidance may reduce password complexity compared to the standard password advice of creating passwords consisting of a random selection of characters, the former approach hasn´t been wholly...
Best Chrome Password Managers
If you browse the Internet and access online accounts using credentials stored in the Chrome browser, you might wonder why anybody might publish an article about the best Chrome password managers. The answer is straightforward. The Chrome password manager has its limitations and, while these limitations may not matter to some Chrome users, they matter to others. The Chrome password manager (more often called the Google password...
Best Firefox Password Managers
If you use the Firebox browser and follow Internet security best practices, you may already be using the Firebox password manager. However, the “built-in” password manager for Firefox has limited capabilities and, in some circumstances, can expose your passwords, credit card details, and other sensitive data to bad actors. So, what are the alternatives to the default Firefox password browser, and which is best? The Firefox password...
What is a Recommended App for Password Sharing?
KeePass, Bitwarden and LastPass are all excellent tools when it comes to sharing passwords securely among employees within your organization. Selecting the correct one for your organization will depend on a range of factors including the level of security you need, how much you can invest, and the degree of control that your IT department needs over the solution. A password manager can greatly improve password security as it allows...
Are Your Passwords Strong Enough?
In order to avoid your organization falling afoul of the ever-increasing attempts of cybercriminals to infiltrate business networks, it is important to invest some time and effort into improving password security. Passwords are often all that stand between a hacker and accounts containing sensitive data, and one compromised account could give a hacker the foothold they need to conduct a devastating ransomware attack. The single...
Can Bitwarden be Hacked?
Bitwarden is a secure open-source password manager and a zero-knowledge solution, which means Bitwarden does not have access to the passwords in any user’s password vault and the source code of the solution is available for anyone to inspect. The security features of the password manager make it practically impossible to hack. Data are kept safe thanks to 256-bit AES encryption, a standard level of encryption which is deployed...
5 Best Free Password Managers
Most computers and mobile devices have free password managers built into their operating systems or browsers. For example, if you have a PC with a Mac operating system, you will have the Keychain password management system built into your computer. If you have an Android smartphone, you will have the Google password manager built into the default Chrome browser, and if you use Microsoft Edge on any device, that too has a built-in free...
How to Fix Cognitive Dissonance in Password Creation
A recent report has highlighted the lack of care of Internet users when it comes to their online activity. The 3rd Psychology of Passwords Report was based on a survey on 3,250 people globally to gauge their online behavior with regards to security and personal safety. Cybercriminal activity has increased as people spend more time online for business and leisure, and poor security practices have made it far too easy for hackers to...
Kaspersky Password Manager Random Password Generator Created Easily Brute Forced Passwords
Password managers have a feature that generates random passwords to make it easier for users to create strong, unique passwords for all of their accounts. Unfortunately for users of the Kaspersky Password Manager, that feature was making it very easy for hackers to brute force those passwords. The problem was resolved by Kaspersky in October 2019 with a Kaspersky Password Manager update and users were sent an alert telling them that...
Which Password Manager is the Best for Compatibility?
When it comes to password management for large companies, one of the most important aspects to consider, prior to investment, is the compatibility of each potential solution with all of the devices and operating systems on your network. Three of the most popular password management solutions are Bitwarden, LastPass and Dashlane. Picking the correct one for your company will depend on your specific requirements. Most of these solutions...
What are the Best Windows Password Managers?
If you use a PC running on Windows 8.1 or later, it comes with a built-in Windows password manager called Credential Manager. The Credential Manager not only saves passwords, but also Windows credentials for connecting automatically with a home or work network, certificate-based credentials for Smart Card logins, and generic credentials for allowing Microsoft apps such as OneDrive, Slack, and Xbox Live to use your PC´s resources....
Using Social Media Safely
There are very few individuals these days who do not use at least one social media platform for personal use or to promote their business. Due to this there is an onus on us all to be careful in relation to how much information we share across these platforms. Divulging too much information can give hackers the upper hand when it comes to trying to access our accounts to steal our private data and raid our financial accounts. A March...
Is Bitwarden the Most Secure Password Manager?
Bitwarden is a powerful password management solution with some great features and excellent security. You can easily create strong and unique passwords for all of your accounts, control access to passwords, share them securely between team members, and have the strongest possible privacy for your company without impacting the productivity your workers, but is it the most secure password manager on the market? Bitwarden provides the...
CISA Creates Catalog of Bad Practices in Cybersecurity
The Cybersecurity and Infrastructure Security Agency (CISA) of the U.S. Department of Homeland Security has published a catalog of bad practices in cybersecurity. These practices are commonplace and exceptionally risky. If these practices are not eradicated, organizations will be vulnerable to hacking. Improving critical infrastructure cybersecurity is a major focus of the U.S. government following the recent SolarWinds Orion supply...
Profile Data of 700 Million LinkedIn Users Listed for Sale on Hacking Forum
700 million LinkedIn records were listed for sale on a hacking forum on June 22, 2021 by an individual who calls himself GOD User TomLiner. A sample of 1 million records has been made available as proof that the offer is genuine. The sample records include the full names of LinkedIn users, phone numbers, genders, email addresses, and job information. This is not the first time that a multi-million record batch of LinkedIn user data...
Should you Switch to Bitwarden from LastPass?
If you’re currently considering changing the password management software you use, particularly a move away from LastPass following the changes that have recently been introduced to the free tier of the solution, it is well worth your while to take a look at one of the best free password managers currently available – Bitwarden. Bitwarden is widely considered to be the perfect free password manager on the market. It offers...
Is Bitwarden the Best Password Manager?
Available as an open-source password management software solution, Bitwarden is one of the strongest and easiest to use. Here we take a look at the various aspects of the solution that we feel makes Bitwarden such a good choice. Basic Bitwarden plans give you a great range of features, and for many users they will be sufficient and will give pretty much everything you could hope for in a free password management solution, such as the...
Best Password Manager for Android
Android is the most widely used mobile operating system – commanding 72% of the global market share – and most Android devices are supplied with Chrome as their default browser. As the Chrome browser uses the Google password manager to store user credentials securely, why might you need an alternative password manager for Android? The answer to this question depends on what you use your Android device for, what other...
How Does Bitwarden Manage Your Passwords?
The Bitwarden password manager is one of the newest password management solutions available. It is an open source password manager, which means the code is available for anyone to review. It has excellent security and a great range of features, and it is also one of the most reasonably priced solutions with an excellent free tier. In this post we will delve into how Bitwarden works and how the solution manages your passwords. First of...
How to Create a Strong Master Password
In 2017, Verizon produced their annual Data Breach Investigations Report which revealed that just over 80% of breaches were due to the fact that weak or reused passwords were in place on the account and servers that cybercriminals eventually infiltrated. This highlights the importance of adding a strong password manager on your password manager. The master password means you only need to remember one password, but can create and store...
Will Biometric Password Managers Replace Traditional Passwords?
For some time there has been a great deal of speculation amongst the cybersecurity community that biometric password managers will eventually be able to take the place of traditional passwords and password management software. However, there are many issues with this potential development in cybersecurity.Here we will show what management software for traditional passwords, like Bitwarden, can offer and look at the weaknesses...
What are the Driving Factors for Enterprises Behind Single Sign On (SSO) Solutions?
Single Sign-On or SSO allows system users to access a range of different devices and applications using just one set of credentials, for this reason it can be an invaluable tool for enterprises that wish to have a secure network while also making everything as easy as possible for network users. 5 Driving Factors for Enterprises Implementing SSO 1. Enhanced Security One of the main concerns about SSO is security is reduced, as only...
Protecting Yourself from a Password Cracker
Protecting yourself and your organization from password crackers may appear to be an impossible mission, but it is much easier than you might imagine. You just need to have the right solution in place. There are dozens of password cracking applications available on darknet marketplaces, each with their own specific features, but they all work in a similar fashion and allow attackers to automate the process of password cracking and...
How Often Should Administrators & Network Users be Required to Change their Password?
It is common knowledge that passwords should be changed on a regular basis but there is much confusion about how often they should be changed. In addressing the question ‘how often should administrators and network users be required to change their password?’ there are a few things that we should consider. For those managing cybersecurity for a large company, network security must be considered along with meeting the...
NIST Password Recommendations
One of the best ways to protect online accounts is by following the Digital Identity Guidelines published by the National Institute of Standards and Technology (NIST). Although designed for federal agencies, the Guidelines have been the basis of personal and corporate online security for many years. However, in the most recent revision, some NIST password recommendations changed. The original NIST password requirements date back to...
Tackling Identity & Access Management Risks
The move to remote working by many companies both before and during the COVID-19 pandemic has seen considerable effort and investment in securing networks. One of the chief areas that businesses need to pay extra attention to is the creation of strong passwords. Poor password practices are frequently exploited by cybercriminals and poor passwords one of the main ways that cyberattacks succeed. The use of an Enterprise Password...
Is Incognito Mode Safe?
It is a common misconception that choosing to open a new browser window in Incognito Mode will mean that you are effectively operating under an invisible force field which will hide everything you do online from everyone else, but that is certainly not the case. Privacy modes have been added to many web browsers that offer a modicum of privacy, but they will not solve all privacy concerns at the click of a mouse. The reality is that...
Phishing Campaign Impersonates Click Studios to Deliver New Moserpass Malware Variant
Last week, Click Studios alerted users of the Passwordstate enterprise password manager about a supply chain attack in which hackers successfully compromised the In-Place Upgrade mechanism of the app, which allowed the attackers to perform malicious upgrades between April 20 and April 22, 2021. During that 28-hour window it is possible that the attackers downloaded a malformed Passwordstate_upgrade.zip file, which was sourced from a...
How to Create the Perfect Master Password
When you use a commercial, vault-based password manager to secure passwords for online accounts, the vault itself has to be secured to prevent unauthorized access to your saved passwords. In order to secure the vault, you need to create the perfect master password and keep it separate from the password manager. Most people are familiar with browser password managers that offer to save your login credentials when you visit an online...
Even When Warned, Many Users Do Not Change Breached Passwords
Google has launched its Password Checkup service on chrome, which displays a warning to users when they login to a website using a password that is known to have been compromised in a previous data breach. Each username is checked against a database of more than 5 billion compromised logins. If the password used matches one associated with the same username in the database, the warning is triggered. The chrome extension has been added...
Why Passwords are Important
To explain why passwords are important, a simple analogy is to compare the login credentials you use to access an online account to your home. If you think of the username as being the equivalent of your physical address, the password is the key that enables you to enter the address. Similarly, the username identifies you to the website provider in the same way as a physical address would identify you to the Postal Service, but the...
Is 1Password, LastPass or Bitwarden Easier to Use?
One of the most important factors when evaluating password managers is ease of use. If a password manager is not easy to configure and populate, the potential exists for mistakes to be made in its set up. Similarly, if end users find using the password manager complicated, they will circumnavigate its controls with the potential consequences of using weak, re-used, or compromised passwords. This comparison of 1Password, LastPass, and...
What is the Best Password Manager for my Network & Devices?
In order to answer the question ‘What is the Best Password Manager for my Network & Devices?’ our team of experts has dedicated more than 10 hours to comparing and contrasting the app compatibility offered by Bitwarden, Keeper, and LastPass. All three are excellent password management options that feature strong security systems for individuals, families, and business users; however, even the strongest password...
Choosing the Best Password Manager
There are multiple websites offering advice on choosing the best password manager. Unfortunately, few distinguish between the best password manager for personal use and the best password manager for business use. Furthermore, although you may be a security-conscious individual, the assumption is often made that all visitors to password manager comparison sites are tech-savvy. This is not always the case. Most people are familiar with...
New Vulnerabilities Identified in Popular Password Managers
Password managers help you create complex and unique passwords for every application, service, and website but how secure are password managers? Could a password manager actually weaken security? According to a study conducted by researchers at the University of York, password managers are not totally secure. Vulnerabilities in password managers have been found that could potentially be exploited by cybercriminals to gain access to a...