Get In Touch

Latest News

Visit Our Blog
30 Sep 2019

Why you shouldn’t save passwords in your browser


When you visit a website that requires you to log into your account, your internet browser asks you if you want to remember your password, so the next time you visit the same site and start typing your user name, your web browser will automatically fill in your account credentials.

Given the difficulty in remembering passwords this is a compelling option.

But there’s a very good reason why you should never allow a web browser to remember your passwords; it’s very easy for someone else to view these stored passwords.

This can be done by someone at your computer or by a hacker remotely.

Let’s take a look at the two most popular browsers, Firefox and Chrome:

  • If you’re using Windows 10 you will be prompted for a user password in order to access saved passwords in the Chrome browser. However, there are plenty of tools available, such as iSumsoft Windows Password Refixer, which make it possible for someone to reset a Windows password and access the passwords.
  • Firefox gives instant access to passwords, without authentication, unless a master password is set.

There is also another way to gain access to browser-stored passwords regardless of operating system, such as Windows 10 or macOS, even if a password prompt is required:

  • Using the Inspect Element window of a browser, someone who know what they are doing can edit the code of a page in such a way that it will un-hash a user password, revealing the password.

However, perhaps of greater concern is the relative ease with which hackers can access data stored in a browser using a variety of malware.

  • Infostealers are well known malware types that steal browser data as well as other information on a computer.
  • There are also free hacking tools that lift saved passwords from Microsoft Edge, Mozilla Firefox, Google Chrome, Safari, and Opera.

These tools exploit browser vulnerabilities which is why it’s important to ensure that browser updates are always applied. Infostealers are also usually inserted into a computer via phishing mails and malicious website links.

  • If your computer or mobile device is ever lost or stolen, whoever ends up with possession of it will have access to any online accounts that you have allowed your browser to store the passwords for.
  • If a hacker takes control of your computer remotely over the internet, via malware, they will have access to your online accounts if passwords are stored in the browser.
  • Storing passwords in a browser also makes your accounts vulnerable to people who might want to snoop around on your computer when you aren’t around.

Rather than have a web browser store your passwords consider a password manager. This is a far better option than handing over the security of your passwords to a web browser.

You can also consider the following options:

  • You can disable (or choose not to enable) autofill and ‘save password settings’.
  • Use a reputable VPN so your internet browsing activities, including entering passwords into websites, is carried out under the cloak of anonymity.

And above all make sure you’re using good internet security software so your computer can’t be infected with malware that steals information from the browser.

Article written by Steve Bell
Article via https://www.clickedonline.co.uk/2019/07/08/why-you-shouldnt-save-passwords-in-your-browser/

Image via Shutterstock.com

Read also:

More than 99% of threats target corporate staff
Tech jobs of the future: 5 IT careers that don’t exist yet
7 tech trends to look out for in 2020

Microtechs 24x7x365 White label support services

Based in Surrey, Microtechs are an established and experienced end user support centre. Our Help desk and NOC experts can monitor your servers and support queue (email, RMM & phone) 24×7 or just as overflow. The Microtechs White Label support service offers a cost effective, 24×7 support option perfect for providers with an expanding customer base.

You may ask yourself:

  • How can I offer support 24/7 without the stress & cost of recruiting and training?
  • How can I free up my team’s time, to enable us to grow the business?
  • How can I improve my bottom line?

Microtechs can help.

Here why;

  • Office hours or 24/7
  • UK based from Guildford, Surrey
  • 1st & 2nd line / NOC and incident management capabilities
  • Ability to learn bespoke applications
  • All white labelled to your brand
  • 25-50% reduction in overheads
  • Pricing from £500 per month
  • Sole traders through to enterprise companies supported

Here’s what our customers have said;

“Using Microtechs to extend the helpdesk capabilities for our organisation has been a very worthwhile venture for us. The transition was very easy and simple, and we have found the Microtechs staff to be both knowledgeable and professional; in their dealings with our clients.”

“My customers receive a polite service and their issues are dealt with quickly and professionally. In short Microtechs provide a courteous, effective and cost-efficient service that enables me to offer my customers 24/7 support without the associated expense.”

It would be great to have a chat with you and understand a little about your business, even if you are not quite ready to outsource.

Live chat us now or call 01483 407417




Sales Director


More About Us