**<invalid character>** @[email protected] · Mar 29, 2019, 11:53

**<invalid character>** @[email protected] · Mar 29, 2019, 11:53

<invalid character> @[email protected]

Mar 29, 2019, 11:53

<invalid character> @[email protected]

A gentle #CoSoSec / #SecurityHygiene reminder.

Don't let your browser save your passwords, use a full password manager.

https://www.techrepublic.com/article/why-you-should-never-allow-your-web-browser-to-save-your-passwords/

The article misses one point... if you're using chrome and signed in to google, then it *does* prompt you with a password request, however, this comes with another attack vector. If your gmail password is compromised, then your passwords are too.

(myself, my chrome passwords are all fake - a sort of honeypot)

**Mandy 🇬🇧** @[email protected] · Mar 29, 2019, 12:23

**Mandy 🇬🇧** @[email protected] · Mar 29, 2019, 12:23

Mar 29, 2019, 12:23

Mandy 🇬🇧 @[email protected]

@0x56 In the settings section on Chrome based browsers you can set it not to offer to save passwords. I would also suggest you remember to sign out of your password manager when you are not there and change the settings in the password manager to re-prompt you for your password when you need to use it.