DATA DOCTORS

Addressing common concerns about password managers

Apr 10, 2021, 5:00 AM
(Unsplash Photo)...
(Unsplash Photo)
(Unsplash Photo)

Q: If someone “acquires” the master password for my password manager program, then they have access to all my accounts. How’s this different than a single password for all accounts?

A: This is a common and legitimate question that often keeps nontechnical users from incorporating a password manager, but it’s important to understand that cybersecurity is never about achieving 100% security as it’s just not possible.

The real focus needs be on evaluating the degrees of security based on a number of variables and whether you are in control of them or not.

Using the same password on all your accounts means that if any one of those accounts is breached, they are all at risk because the standard operating procedure for cyber-thieves is to try the same password on thousands of other sites.

You are also only as secure as the least secure site that uses the same password.

Who’s in control?

Protecting the personal information that you provide to any company is totally out of your control.

The fundamental security enhancement of using a different password for every account should be fairly obvious to everyone, but not possible without some form of password management.

Protecting how you manage your passwords is one of the most important things to focus on, which goes to your question.

If you were to write down all your passwords and keep them in a very secure place, that would be preferential to using the same password on every account.

The key is to not make it obvious that the information is a bunch of passwords in the event someone else finds it.

Password manager security

When you incorporate a password manager, you only have to create, remember and protect one password.

It’s important to use a very long and complex password that you have never used before for the best chances of keeping it secure.

Most password management programs provide lots of additional layers of protection that you can setup that include two-factor authentication and rules that deny access based on location, device or IP address.

When you add these additional layers of protection, even if an unauthorized person acquires your master password, they won’t be able to use it because they won’t have the necessary additional items to be fully authenticated.

You’ll also get a warning of a failed or blocked sign-in attempt, which lets you know to change your master password to be safe.

What if they get hacked?

Another common question about password management services is, “what happens if they suffer a breach?”

Your passwords on all of the services are stored using powerful encryption, which means any breach of the encrypted data would require the hacker to spend time attempting to decrypt the information.

The service would automatically require you to reset your passwords, which would render the stolen information useless by the time it was decrypted.

Suggested programs

For many years, I’ve recommended LastPass because it offered lots of features in the free version of the program, but if you want to use it on both a computer and smartphone, it’s no longer free.

Another fee-based service that has lots of great features is 1Password.

Both services offer individual or family-based plans that range from $3 to $5 a month.

Data Doctors

(Pixabay Photo)...
Data Doctors

Here’s how to get into geocaching, an outdoor and virtual treasure hunt

If you love the outdoors and treasure hunting or want a high-tech way to get the kids outside, geocaching is worth checking out.
3 days ago
(Pexels Photo)...
Ken Colburn, Data Doctors

Ways to find out if your smartphone has malware

Malicious software (aka malware) and malicious apps, are the biggest threat to both iOS and Android devices.
10 days ago
(Unsplash Photo)...
Ken Colburn, Data Doctors

A variety of tech makes deleting internet cookies a waste of time

The most common way your behavior is tracked is through the use of cookies, which are small text files that are placed in your computer with information about your online activities. Now there's fingerprinting.
17 days ago
(Pexels Photo)...
Data Doctors

Here are things to consider when buying a USB turntable

Here are a few things to look for if you're in the market for a record player.
24 days ago
(Pexels Photo)...
Data Doctors

Are cashback websites safe to use or are they a scam?

A good dose of skepticism will serve you well as it pertains to rewards-based websites but the good news is that there are many very legitimate resources that you can use when you make online purchases using cashback sites.
1 month ago
(Pexels Photo)...
Ken Colburn, Data Doctors

Explaining the ins and outs of shooting digital pictures in RAW format

The RAW format for digital photos is generally preferred by professional photographers because it provides a much larger palette to work with when it comes to editing the image.
1 month ago
Addressing common concerns about password managers