Using the same Password across multiple sites is a massive risk. There are many breaches that happen each year. When a breach occurs, your password and other personal information are leaked. Cyber Criminals then have an email address, username, and password that can be tried on other websites. If you are using the same login details, a breach from one website could provide criminals access to all your accounts.
To limit the damage that can occur when password leaks happen, you must have unique passwords on every website.
Most people are still using weak passwords. You must ensure that all credentials include strong passwords – they should be long and have a decent level of complexity by ensuring they contain symbols, numbers, Capitols and lower-case characters. But how is it possible to remember a strong, unique password for all the websites you use? The answer is a password manager.
Password managers save your login details for the websites you use and can log into them with the click of a button, or automatically if you are logged into your password manager. Your passwords are stored safely in an encrypted database that is protected by a master password. That means that you only have to remember that one master password.
Another benefit of a password manager is that it will generate a secure random password for new accounts, so you don’t have to generate new complex passwords yourself.
Web browsers such as Chrome, Firefox, Internet Explorer have integrated password managers, they will often offer to save passwords and credentials for you. However, they do not have the inbuilt security features that dedicated password managers do. For that reason, it is not advisable to use the password managers that are built into browsers.
There are a number of password managers available, but our recommendation is LastPass. It is cloud-based and has extensions for your browser, mobile apps, and even desktop apps for most operating systems. It also has the option of adding two-factor authentication for added security, which we thoroughly recommend. LastPass stores your passwords on their servers in an encrypted form. When you access your passwords, the system decrypts and encrypts them when you log in, so LastPass has no access to view your private information.
It is very important to remember that your master password controls access to your entire password manager system, so it needs to be particularly strong and you must not forget it. The password can be changed later, but only if you remember it!
LastPass has a feature called LastPass Security Challenge, which will identify any weak and duplicate passwords you should change. Password managers can also store other types of information securely, such as credit card numbers or passcodes. Password managers can even help to prevent phishing attacks from being successful. Because of the way they autofill account information into websites identified by their web address (URL). if you think you’re on a website for which you have an account and your password manager doesn’t automatically fill your login information, it is a possibility that you’re not on the genuine site, but actually, a phishing website that has a different URL.