Password manager

An application that generates, stores, and auto-fills unique strong passwords for every online account, encrypted under a single master password the user remembers.

Why it matters

Reusing passwords across sites is the single largest preventable cause of account breaches. A password manager makes unique strong passwords zero-effort: you remember one master password and the manager handles the rest. The auto-fill feature also doubles as anti-phishing protection because it only fills on the matching domain.

For business or family use, the shared-vault feature lets you grant access to a service (Netflix, utility account) without sharing the underlying password.

Best practices

Use a unique strong master password (a passphrase of 4 to 6 random words is ideal). Enable two-factor authentication on the password manager itself. Store the recovery key offline; if you lose the master password and 2FA, the data is unrecoverable.

Review the password health report monthly. Most managers flag reused, weak, or breached passwords automatically.

Frequently asked

Is it safe to put all my passwords in one place?

Yes. The password manager encrypts the vault under your master password, and the major providers (1Password, NordPass, Bitwarden) cannot read your vault even if their servers are breached. The risk profile is much better than reusing a single weak password across 100 sites, which is what most people do without a password manager.