Contact us today!

Network Solutions Unlimited Blog

Is It Safe to Have Your Browser Remember Your Passwords?

Is It Safe to Have Your Browser Remember Your Passwords?

Let’s be honest - not all of us have the best memories. This makes the ability for many browsers to remember our passwords seem like a godsend. However, is this capability actually a good thing for your cybersecurity? The answer may not surprise you.

While yes, the fact that we no longer have to remember each different password for our online accounts may seem ideal, relying on the browser to remember them for us presents a few issues. Each of these browsers leaves some kind of opening for a hacker to review a user’s list of passwords.

Google Chrome - When a user is logged into their Google account, Chrome will automatically save any passwords that user inputs. If a hacker was then able to gain access to that Google account, the entire list of passwords would be available to them.

Mozilla Firefox - Utilizing low-level encryption, Firefox hides a user’s passwords, utilizing a single master password as the encryption key. However, because this encryption has such a low level, a brute force attack can break it. Plus, if someone is in possession of the device itself, they can access the passwords without having to log in.

Safari - Just as is the case with Firefox, Safari stores all passwords in the browser’s settings, where they can be accessed without a login required.

Internet Explorer - When Internet Explorer saves passwords, all it takes to expose them is a readily available tool.

Microsoft Edge - Edge has had some security issues, such as a flaw that enabled hackers to read files that were browser-compatible (like the notepad files that some might keep a list of passwords in). In addition, some third-party password managers, like Edge Password Manager, have failed to require password authentication in the past.

Of course, there are other threats to your password security as well. For instance, a bug that dates back 11 years was discovered early this year that allowed website credentials to be stolen. A secondary form was hidden behind the login form, stealing usernames (which were often just the user’s email) and passwords without the user having any idea.

What Can Be Done?
Your first step should be to disable your preferred browser’s built-in password manager.

Google Chrome - Under the toolbar, select Chrome Menu, and from there, Settings. Scroll down until you can select Advanced, and from there, select Manage passwords (found under Passwords and forms). Finally, switch Auto Sign-in to off.

Mozilla Firefox - In the toolbar’s Firefox Menu, access Options. On the left, access Privacy & Security, and find Forms & Passwords. Find the Remember logins and passwords for websites option and deselect it.

Safari - Select Safari Menu from the toolbar, and then select Preferences and Autofill. Then you’ll need to deselect Using info from my Address Book card, Usernames and passwords, and Other forms.

Internet Explorer - First, you need to reconsider utilizing Internet Explorer, assuming your organization gives you a choice in the matter. If you must, you will want to access the toolbar’s Internet Explorer Menu and select Internet Options. From there, click into Content, and select Settings (found under AutoComplete). Deselect both Forms and Searches and User names and passwords on forms. Finally, save your changes by clicking OK.

Microsoft Edge - Again, from the toolbar, select Edge Menu and from there, Settings. Scroll down to find View advanced settings. Under Privacy and services, deactivate Offer to save passwords, and under Manage passwords, deactivate Save from entries.

We understand, remembering all of your different passwords can be a real pain, but relying on your browser to remember them just isn’t a good option. There are, however, services like LastPass that can store your passwords much more safely behind much more powerful encryption. While these solutions aren’t infallible either, they are a much better choice than entrusting your browser.

For more help managing your business IT and its security, give Network Solutions Unlimited a call at 217-428-6449.

Getting to Know Technology: Breadcrumbs
Here Is a List of this Year’s Most Devastating Hac...


No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Saturday, October 20 2018

Captcha Image

Mobile? Grab this Article!


Tag Cloud

Cost Management MSP Regulation Wireless Charging Updates Mobile Device Management Company Culture VPN Smart Tech Downtime Virtual Assistant Content Filter Shadow IT Streaming Media Bring Your Own Device Amazon Android Patch Management Windows Ink Data Recovery BDR Business Continuity Alexa for Business Internet exploMicrosoft Employee-Employer Relationship Security Professional Services Smart Technology hacker Audiobook Hardware Managed Service Provider Virtual Reality Employer Employee Relationship Politics Gamification Root Cause Analysis Money Operating System Identity Theft Data Protection How To Privacy Comparison Server Internet Data Security Touchpad Keyboard Innovation IT Support Solid State Drive Microsoft Communication intranet Quick Tips How to Scam HIPAA Blockchain Technology Twitter CrashOverride Data Management Collaboration Hard Drive Physical Security Government Education Reputation Identities Microsoft Word Chromebook Network Security iPhone The Internet of Things Computing Infrastructure Facebook Retail Relocation Business Computing Flexibility Websites Cortana HBO Phishing Emails Phone System Specifications Computer Benefits IT Management Humor PowerPoint Business Owner Application Office VoIP Settings Hard Drives Legislation Scalability Bluetooth Colocation Lifestyle IT Services Connectivity Data Backup Productivity Hyperlink Unified Communications Transportation Adobe Black Market Wireless Peripheral Automation Conferencing Customer Antivirus Remote Computing Touchscreen Email Mobile Electronic Medical Records IT solutions Instant Messaging PDF IT Support Browser Gmail Disaster Recovery Robot Holiday Cybersecurity Avoiding Downtime Analysis Alert Efficiency Windows 10 Sales Data storage Public Cloud Hackers Financial Worker Productivity Windows Credit Cards Memory Cast Update Bandwidth Cache Devices eWaste Hosted Solutions Miscellaneous Computer Fan Small Business Best Practices Hacking Outlook Wasting Time Battery Spam Storage Business Management Training Applications Apple Telephone Systems Networking Mobile Security Mobility Legal Microsoft Excel Commerce Cybercrime Wasting Money Google Google Assistant Software Students Apps Employer-Employee Relationship Content Filtering Windows 10s Computing App Travel Hiring/Firing User Tips Unified Threat Management Marketing Data Breach Project Management Device Security Charger Backup USB Cleaning Software as a Service Passwords Remote Monitoring Password Hybrid Cloud Users Managed Service Workplace Tips Wi-Fi Computer Forensics Language Social Engineering Data Privacy Audit Search Monitor Spyware Risk Management Network Outsourced IT Printing Loyalty Google Maps Troubleshooting Managing Stress Augmented Reality Content Entertainment Tech Term Accessory Work/Life Balance Telephone Redundancy WPA3 FAQ Word Worker Commute Television Thank You Upgrade HaaS Spam Blocking Data Theft BYOD Computers Business Intelligence Assessment Tip of the Week Information Technology Internet Exlporer Managed IT Office 365 Ciminal Firewall Mobile Device Data Loss Testing Sync Monitors Cloud Computing Router Recovery Video Games Business Technology Chromecast Files Financial Technology Windows 7 Laptop OneNote Screen Mirroring Personal Information Social Media Windows 10 Business Budget Wireless Technology Emergency Value Wireless Internet Evernote Gifts Books IT budget Health Upgrades Data Storage Smartphone Artificial Intelligence Office Tips Tech Support IT Solutions Edge Chrome Two Factor Authentication Nanotechnology Document Management Managed IT Services User Error Techology Monitoring Webinar Meetings Printers Unsupported Software Shortcut IoT Samsung Congratulations Sports Rootkit Save Time Mobile Devices Best Practice Communications Advertising Safety Ransomware WiFi Maintenance Private Cloud Law Enforcement Workers Managed IT Service Consultant NFL Encryption Proactive Saving Money Two-factor Authentication Microsoft Office Virtualization Display Excel Smartphones File Sharing Automobile Camera Management History Co-Managed Services Going Green Managed IT Services Proactive IT Malware Hard Disk Drive Public Computer Fraud Computer Care Virus Gadgets Vulnerability Vendor Compliance Experience Administration WannaCry End of Support WIndows Server 2008 App store Vendor Management Licensing Hosted Solution Data Big Data Information Dark Web Computer Accessories Cloud Google Drive File Storage Identity iOS Google Docs SaaS Tablets Save Money Projects Internet of Things