- Nov 1, 2018
- 52

Don't Let Google Manage Your Passwords
Experts tell us that relying on Google Chrome (or any browser) to manage your online passwords is a seriously bad idea. Here's why.
Last edited by a moderator:
By Tavis Ormandy a vulnerability researcher with Google Project Zero:If you want to use an online password manager, I would recommend using the one already built into your browser. They provide the same functionality, and can sidestep these fundamental problems with extensions.
I use Chrome, but the other major browsers like Edge or Firefox are fine too. They can isolate their trusted UI from websites, they don’t break the sandbox security model, they have world-class security teams, and they couldn’t be easier to use.
No doubt there will be many people reading this who don’t like this advice. All I can say is I’ve heard all the arguments, and stand by my conclusions.
You can use something like KeePass with the autofill plugin. You own that database instead of "in the cloud's or "securely stored". KeePass saves on your device and nowhere else (unless you install plugins for that)I don't let anything manage my passwords I'm safe inside my mind of remembrance. We all know any company can have a data breach, but chips haven't been installed into our brains yet so that's still safe option.
While that may work well for you, for me, not so much. I could remember 10-15 passwords, but 100 +, not a chance.I don't let anything manage my passwords I'm safe inside my mind of remembrance. We all know any company can have a data breach, but chips haven't been installed into our brains yet so that's still safe option. Password managers are pointless in my opinion.
I place my bet on Tavis' side.By Tavis Ormandy a vulnerability researcher with Google Project Zero:
I always let facebook manage my passwords.![]()
Don't Let Google Manage Your Passwords
Experts tell us that relying on Google Chrome (or any browser) to manage your online passwords is a seriously bad idea. Here's why.www.pcmag.com
Or use a desktop password managerBy Tavis Ormandy a vulnerability researcher with Google Project Zero: