DATA DOCTORS

Addressing common concerns about password managers

Apr 10, 2021, 5:00 AM
(Unsplash Photo)...
(Unsplash Photo)
(Unsplash Photo)

Q: If someone “acquires” the master password for my password manager program, then they have access to all my accounts. How’s this different than a single password for all accounts?

A: This is a common and legitimate question that often keeps nontechnical users from incorporating a password manager, but it’s important to understand that cybersecurity is never about achieving 100% security as it’s just not possible.

The real focus needs be on evaluating the degrees of security based on a number of variables and whether you are in control of them or not.

Using the same password on all your accounts means that if any one of those accounts is breached, they are all at risk because the standard operating procedure for cyber-thieves is to try the same password on thousands of other sites.

You are also only as secure as the least secure site that uses the same password.

Who’s in control?

Protecting the personal information that you provide to any company is totally out of your control.

The fundamental security enhancement of using a different password for every account should be fairly obvious to everyone, but not possible without some form of password management.

Protecting how you manage your passwords is one of the most important things to focus on, which goes to your question.

If you were to write down all your passwords and keep them in a very secure place, that would be preferential to using the same password on every account.

The key is to not make it obvious that the information is a bunch of passwords in the event someone else finds it.

Password manager security

When you incorporate a password manager, you only have to create, remember and protect one password.

It’s important to use a very long and complex password that you have never used before for the best chances of keeping it secure.

Most password management programs provide lots of additional layers of protection that you can setup that include two-factor authentication and rules that deny access based on location, device or IP address.

When you add these additional layers of protection, even if an unauthorized person acquires your master password, they won’t be able to use it because they won’t have the necessary additional items to be fully authenticated.

You’ll also get a warning of a failed or blocked sign-in attempt, which lets you know to change your master password to be safe.

What if they get hacked?

Another common question about password management services is, “what happens if they suffer a breach?”

Your passwords on all of the services are stored using powerful encryption, which means any breach of the encrypted data would require the hacker to spend time attempting to decrypt the information.

The service would automatically require you to reset your passwords, which would render the stolen information useless by the time it was decrypted.

Suggested programs

For many years, I’ve recommended LastPass because it offered lots of features in the free version of the program, but if you want to use it on both a computer and smartphone, it’s no longer free.

Another fee-based service that has lots of great features is 1Password.

Both services offer individual or family-based plans that range from $3 to $5 a month.

Data Doctors

(Pixabay Photo)...
Ken Colburn, Data Doctors

This is what you need to know about security for Windows 11

Here's what you need to know about Windows 11 security on your device.
23 hours ago
(Pexels Photo)...
Ken Colburn, Data Doctors

Take your time choosing the right wireless earbuds for you

When you start shopping around for wireless earbuds, start by thinking about when and where you’ll most likely be using them - the features you’ll want may be quite different for each use.
8 days ago
(Pexels Photo)...
Data Doctors

When to reply ‘stop’ to an automated text messages

Be careful when you reply "STOP" to unwanted text messages. Pick the wrong ones and scammers will know that your phone number is both active and responsive.
15 days ago
(Pixabay Photo)...
Data Doctors

Here’s how to get into geocaching, an outdoor and virtual treasure hunt

If you love the outdoors and treasure hunting or want a high-tech way to get the kids outside, geocaching is worth checking out.
22 days ago
(Pexels Photo)...
Ken Colburn, Data Doctors

Ways to find out if your smartphone has malware

Malicious software (aka malware) and malicious apps, are the biggest threat to both iOS and Android devices.
29 days ago
(Unsplash Photo)...
Ken Colburn, Data Doctors

A variety of tech makes deleting internet cookies a waste of time

The most common way your behavior is tracked is through the use of cookies, which are small text files that are placed in your computer with information about your online activities. Now there's fingerprinting.
1 month ago

Sponsored Articles

...
Sweet James

Best fall road trips to take on a motorcycle

Autumn in Arizona brings the beauty of color-changing leaves and a relief from summer heat. It’s one of the most pleasant times to explore the outdoors, especially on a motorcycle.
...
PNC Bank

How one organization supports early childhood literacy for the most vulnerable

Nearly two out of every three children in low-income communities don’t own a single children’s book, a fact that ultimately could have profound impacts even before entering kindergarten, according to Arizona nonprofit Southwest Human Development.
...
Chris Kennedy

My Special Aflac Duck® taking flight in Arizona

For more than 65 years, Aflac has had the extraordinary opportunity and privilege to help provide peace of mind to individuals who have our supplemental insurance policies.
Addressing common concerns about password managers