We can’t all have the best memories. Because of this, many of us love the option of having our browser remember our passwords so we don’t have to. However, how good is this capability really? Are browsers safe password managers? Especially when it comes to your business? While you may have really good anti-virus software in place and even have a security plan, you may not even think of the effects of internet browser password functions.
Many people would never even think that this function could be a threat, but we want to warn you about any risk you may face. Even if your password is complex, it won’t matter if a hacker can get access to it without having to guess. Without a password management solution, we guarantee that your employees will use the browser password systems that are offered. So, let’s go over if browsers saving your passwords are safe or not.
Popular Browsers Put Phoenix Small Business Online Security at Risk
While the convenience brought along with saving your passwords is nice, it can present a few major issues. Each browser has different openings for hacker to take advantage of your passwords, and this are some of the vulnerabilities we are aware of:
- Google Chrome – Your password are saved through your Google account, so if a hacker can get into your Google account, they will have access to all of your passwords. It also can cause an issue if your employees are using their personal Google accounts for work and saving work passwords into their account settings. Not only can hackers get into your company from their personal Google account, but if your employee ever leaves, they are taking passwords with them within their personal account.Â
- Mozilla Firefox – Firefox uses a low-level encryption tool to make all of the passwords have an encryption key but it is a low level, so it can be easy to crack.Â
- Safari – Just like Chrome, Safari holds all of your passwords in your settings when they can be accessed without even a login.
- Internet Explorer – All it takes to expose Internet Explorer passwords is a readily available tool.
Microsoft Edge – Edge has had some security issues in the past that made it possible for hackers to read files that were browser compatible like notepad files in which some keep their passwords hidden. Edge Password Manager, which is a third-party password manager also failed and hasn’t required password authentication before.
What should you do now?
In the meantime, you should talk to your employees to make sure they are not saving their passwords within the browsers, and ask them to disable this feature. Here is how:
- Google Chrome – Under the toolbar, you can select the menu and go to settings. Scroll down in settings until you find the advanced option and click manage passwords. You can then turn Auto Sign-in off.
- Mozilla Firefox – In the menu, go to options and go to privacy and security. In forms and passwords, find the remember logins and password for websites option and deselect it.
- Safari – Click the menu from the toolbar and go to preferences and autofill. Then from there, deselect the using info from my address book card, other forms and usernames, and passwords.
- Internet Explorer – You may not want to be using Internet Explorer at all if you have another option, but if you must, here is how to disable the feature. Go to the toolbar to go to the menu and select Internet options. Go to content and then select settings and deselect forms and searches and usernames and passwords. Make sure to save your changes by clicking OK.
- Microsoft Edge – From the toolbar, select menu and go to settings. Find the view advanced settings option and go to privacy and services. In there, deactivate offer to save passwords and go to manage passwords and deactivate save from entries.
If your team relies on password management, there are other more reliable ways. LastPass and other safe password managers can do the same thing but are much safer for your business. MyTek can help you set up an enterprise-level password management solution so your employees don’t have to scramble to remember all of their passwords. Call us today at 623-312-2444 for more information or to start your 30-day free trial.