• [VIDEO] I know your password! It's... (Password Blackmail Scam)
    8 replies, posted
https://www.youtube.com/watch?v=1JDCbq9Uq5o
He gives objectivley good advice, but I can't help but be frustrated that this is also just a 9 minute advertisement for dashlane. He even puts his discount code/link in two different locations in the video.
Tbh Password managers just seem like even more of a liability.
I use LastPass Is a VPN and Dark Web Monitoring worth the extra money. Last Past only costs me ~$30 a year but moving over to these guys would cost me ~$55 and since I'm currently unemployed that's quite the price difference Anyone here who uses Dashlane that can comment on it?
A properly managed password manager is incredibly secure. Randomly generated passwords for everything stored in it, one truly unique master password and 2FA to mitigate the chance of it being breached. Most managers that don't suck shit (Lastpass, 1Password, etc.) don't offer weak 2FA solutions either, so no weird SMS hijacking shenanigans like Twitch and what have you have had before. Remembering multiple unique passwords isn't secure. It's a disaster waiting to happen when you either forget the passwords or end up getting lazy and using a really simple algorithm to come up with passwords that just aren't secure. Don't make it obvious you're using a password manager and as far as an attacker knows you're just rainman and can memorise a 32 character nightmare.
I'm currently just using a Keepass database hosted on Google Drive. It uses a password and a keyfile, and the keyfile is stored not on my main desktop and it never touches the internet. You'd need to steal a portable personal belonging of mine as well as know my password as well as get access to my database at the same time before I get home and change all my passwords. Possible, yes, but unlikely. Though this could easily be done if I were to plug my pendrive into a compromised computer and was dumb enough to run KeepassXC from it. But on a compromised computer not much can save you anyways. The database is on Google Drive so it could theoretically be compromised but if the encryption methods used are broken then we have much larger issues.
Only reason I have multiple passwords is because some sites require a number and a capital, just a number, a number and a symbol, just a symbol, a capital letter, symbol, and a number …. I have three separate "main" passwords - one with a number and a cap, one with just a number, one with just a symbol, but no password with a cap, number and symbol so I gotta combine shit and it's so obnoxious especially for sites that you visit once in a blue moon.
I use a NATO Alpha-Numeric style. Makes remembering passwords easy.
I accidentally found a friend password by searching his name on google once.
Sorry, you need to Log In to post a reply to this thread.