How Secure is Google Chrome’s Password Manager Although password managers have been available in the market since the 1990s, major browsers added password management as a built-in feature in the early 2000s. Since then, it has been advised to remove your passwords from insecure browser storage and store them in a well-protected password manager.
A password manager can pull your password from the browser, delete it from the browser, and even prevent the browser from capturing passwords in the future. You may not feel so safe knowing this process.
The good thing is that as the browsers gradually improve, they have closed the way for external parties to retrieve the user’s password. If you want to move to a dedicated password manager, you may need to manually export passwords from your browser and import them to a new platform.
Does that mean that the password can now be safely saved in the browser? Here, especially, you should use Google Password Manager, which is placed in the Chrome browser so that it can be used easily. Experts have clearly advised that saving passwords in Google Chrome is not safe.
What is even worse is that some important data such as the login domain was found to be unencrypted. This has made it difficult to trust LastPass.
KeyPass is the password manager of choice for tech-savvy people. It has many options for customization. That customization is also a kind of weakness.
Because someone who can gain access to your computer (Remote Access Trojan or someone who runs your computer in your absence) can steal all your Keypass passwords. It is common to create an action using Notepad and export the password to simple characters and send the resulting data to the Internet.
How to activate Google Password Manager?
For this, go to the three-dotted menu at the top right of the Chrome window and click on Settings.
At the beginning of the menu that opens on the left you can see You and Google (You and Google), at first it may be selected by itself; If not, click on it. Now you can turn syncing on or off by going to the dialog box that appears.
Now click on autofill right below you and google and go to a password manager. If you want to use Google Password Manager, turn on the offer to save passwords and auto sign-in. But from the point of view of security, it is advised not to use this feature. But some people risk their safety for convenience.
Browser password managers are convenient but can be dangerous
NordPass Chief Technical Officer (CTO) Thomas Smalaki warned about the use of browser password managers, saying, “Despite cyber security experts regularly warning about the vulnerability of browser password managers, Internet users regularly fall into the trap of ‘but it’s easy’.”
Keeper’s CTO and co-founder Craig Lure agreed that the browser password manager is not secure and has pointed out the reasons in a blog post. A dedicated password manager keeps your data safe with ‘zero-knowledge encryption’ without ever having access to your master password.
Although storing passwords in the cloud is not wrong, companies should ensure that user data is encrypted before storing it in the cloud. Therefore, users should choose a service provider that guarantees end-to-end encryption.”
“Any password manager is better than no password manager at all,” says Mitchell Crandell, CEO at Bitwarden. But the limitation of browser-based password managers is that they only work inside the walled garden. It won’t work if you have to use another browser or in an environment where that browser isn’t available.”