Password Manager Discussion.

personally i use keepass... we use myki at work (msp) https://myki.com/

 

It must be an US thing. I have never seen a bank that e-mails 2FA codes. I have seen only text (sms), scratch cards with printed codes and banking-app-based 2FAs. Probably bank's telephone helpline is also an option to reset password. Of course you can just go physically to bank too - you will get a temporary password send to you by sms or get a random password in sealed envelope.

 

Yes correct, it really depends on the online bank. If a bank makes use of 2FA via SMS or email then they are clearly not serious about security. The best way to secure online banking is via hardware based 2FA. That's why mobile banking is a complete joke, most banking apps aren't even secured via 2FA from what I understood. So people often get tricked into typing username and password via some fake banking app and hackers can then plunder their account.

LOL, good one.

 

what are your thoughts on that password manager (Myki)? looks solid and reliable (?)

 

For one thing it's more expensive than LastPass.

 

Anyone here using a password manager on an enterprise level? If so, which one and why? I am starting to look into this for work. Currently have my eye on Bitwarden and 1Password.

 

Not Enterprise but small business. In any case we bought the business version of Bitwarden and I'm not too pleased with it. The boss liked it until he wanted to expand it to more people. The original password list when shared with the company does not retain any folders, just all of the loose passwords. All organization is lost. Unless we are doing something wrong but it does not appear so. Also the boss has been having issues finding passwords in the iOS app. If we go to the online app they all show. I think it need more polish.

 

Are you guys running on premise or cloud version?

 

Cloud version

 

Interesting. I was interested in on premise but if you guys are having issues, I may need to take it out of the mix. Thanks.

 

If iOS is going to be involved then keep looking for something else. If not, up to you. I expect there are better options, especially if you are considering using the paid version.

 

yep seems really solid & reliable, everyone at our company loves it...

 

It really is hard to beat LastPass, if you are willing to pay what they want. I no longer was but it had nothing to do with the product itself. In an Enterprise environment if the budget allowed for it I would put it pretty high on the list of recommendations.

 

I hear you. I just don't care for the company so dunno if I will go with them or not.

 

BTW, is anyone using the Blur Password Manager? It actually does more than that, it's also a tracking-blocker and provides an email and creditcard masking feature. These guys have been around for quite some years, but you never read about them on this forum. Well, except for this one time when they had a security incident, but this has also happened to other companies like LastPass and Bitwarden.

https://www.abine.com
https://www.wilderssecurity.com/thr...word-manager-user-information-exposed.411768/

 

I have been using their email masking tool for several years, it works great. Never used their password manager.

 

Same (though I did eventually stop using the email masking tool).

 

OK cool. I'm guessing that their anti-tracking isn't that advanced, but the email masking feature sounds nice. I'm not sure if the creditcard masking feature will work with Dutch creditcards, but I'm not using this type of payment method that often anyway.

 

They did not support any EU cards when I used them and they still don’t seem to do:

At this time, Masked Cards are available for US users only.

https://dnt.abine.com/#help/faq/faq-maskedCardInternational

 

1Password's latest feature lets you safely share passwords with just a link
The recipient doesn't need to be a 1Password user
October 12, 2021
https://www.techspot.com/news/91710-1password-latest-feature-you-safely-share-passwords-link.html

1Password 7.9 (October 12, 2021)
Release Notes
Download

1Password blog entry: Psst! Now you can securely share 1Password items with anyone

 

1Password 8 is now officially available for Windows
The new version comes with a major redesign and new features.
November 16, 2021
https://www.engadget.com/1-password-8-officially-available-windows-140021850.html

1Password 8.0 (November 16, 2021)
Announcement
Download

 

I've just read that Mozilla has pumped $900.000 in this new password manager project, which apparently doesn't make use of a master password, but uses your smartphone to unlock it. Which is a big no-no for me.

https://www.heylogin.com/en
https://www.heylogin.com/en-post/900-000-eur-pre-seed

 

BTW, I have read that 1Password has now made it easier to login via Google, Apple and Facebook for example. It works via the browser extension, sounds interesting.

https://blog.1password.com/sign-in-with-other-providers/

 

Though I don't see anything in the release notes it seems that the latest update for Sticky Password now includes support for Windows Hello.