No, I'm not going to convince you or scare you.
Today I have prepared for you the possibilities where to go with them - with PASSWORDS. Keep in mind that every solution has its limits and there is no one-size-fits-all solution.
1) I DON'T WANT A CLOUD SOLUTION FOR STORING PASSWORDS
KeePassXC - individuals, small teams
- Works on all possible platforms including mobile
- Supports plug-ins for common browsers = passwords are automatically retrieved
- Access to the database can be protected e.g. with a YubiKey key fob
- Access from multiple devices, access by multiple people can be solved e.g. by storing on a shared, cloud drive (in encrypted form of course), sharing only selected passwords is a bit problematic.
For the general non-IT population we may find this unintuitive = complicated.
Passbolt
- Multiplatform opensource solution for teams
- MFA in paid version only
- There is a version for on-premise and cloud = you can choose
2) I HAVE NO PROBLEM STORING HESEL INTO CLOUD SERVICES (MFA, no exceptions)
Cloud providers of these services always have solutions for individuals as well as businesses. They vary in price and most importantly in capabilities. Password sharing, password quality control, MFA enforcement, single sign-on, offline access, password export restrictions, etc.
Bitwarden
1password
Lastpass
Passbolt and many more ...
The problem with cloud services for password storage is their potential compromise. Yes - that's a bummer.
This risk can be greatly reduced by preferring services that allow and require a 2nd factor to log in. An attacker may get your login credentials, but without the 2nd factor, they will be useless *1.
3) Offline stored passwords
Why not, this method has its limits and strengths.
4) Combination of multiple online + offline options
A few of my friends, and myself, use a combination of different solutions, depending on the problem a possible compromise or password leak would cause. It's a bit problematic to keep this under control, but if one is consistent, it may not be a bad option.
*1 - Remember that nothing in IT can ever be 100%.
https://keepassxc.org/
https://www.passbolt.com/
https://bitwarden.com/
https://1password.com/
https://www.lastpass.com/
#hackerprotect #cybersecurity #technology #cloud #JumpCloud #AzureAD #Microsoft365 #PasswordManager #OpenSource #HackerProtect