Why Using a Password Manager Can Be a Smart Move
In today’s digital world, we juggle dozens—sometimes hundreds—of passwords across work, school, and personal accounts. Remembering them all? Not realistic. Reusing the same one? Risky. Fortunately, there’s a more secure alternative: dedicated password management software.
What Is a Password Manager?
Password managers serve as encrypted vaults for all your credentials. They generate unique, complex passwords for each service, while you only need to remember one strong master password to access the password manager itself. When you visit a website, the manager can automatically fill your credentials, making account security convenient.
Many university staff and students store passwords in their web browsers because it seems convenient: Edge, Safari, Firefox and Chrome all offer to save passwords as you browse. However, this approach comes with significant security risks that aren’t immediately obvious.
Browser password storage typically uses weaker encryption standards than dedicated solutions. Browsers store passwords primarily as a convenience feature, not as their core security function. Crucially, if malware infects your browser, your stored passwords all become vulnerable. We’ve been seeing increasing levels of browser-based malware attacks on university desktops and laptops as cyber attacks become ever more sophisticated.
Why Use One?
Here are a few reasons why password managers are helpful:
- Stronger Security: They generate and store complex, unique passwords for each account—no more “Password123!”
- Convenience: Autofill features make logging in fast and easy, especially across multiple devices.
- Centralized Access: You can manage all your credentials in one place, including notes, secure documents, and even 2FA codes.
- Reduced Risk of Phishing: Many managers recognize legitimate websites and won’t autofill credentials on fake ones.
Transitioning to a Password Manager
We recommend that you:
- Research and select a reputable password manager that suits your needs.
- Start by securing your most important accounts first—university, email, and financial services.
- Enable two-factor authentication on your password manager account.
- Gradually add other accounts as you use them.
- Consider using the password manager’s security assessment tools to identify weak or reused passwords.
For maximum protection, combine your password manager with Two-Factor/Multi-Factor Authentication (2FA/MFA) wherever possible.
A Note on Safety
While password managers are designed with strong encryption and security protocols, no tool is 100% immune to hacking. That’s why we can’t officially recommend one over another. It’s important to do your own research and choose a solution that fits your needs and comfort level.
The University does not endorse any particular password manager but here are a few examples:
- 1Password
- Bitdefender
- Bitwarden
- LastPass
Using Bitwarden or Bitdefender at the University?
If you’re considering Bitwarden or Bitdefender for managing your University-related passwords and you’re using a Windows 11 device, good news: we can roll out a Bitwarden add-on and a Bitdefender add on for Microsoft edge. This lets you manage your passwords directly within the browser, making it even easier to stay secure and organized. If you would like to do this please contact the Information Centre and we can arrange for this.
Some information from these reputable suppliers
1Password 1Password has a 14 day free trial and then there are different subscription models available.
Bitdefender. Bitdefender has a free 30 day trial and then there are different subscription models available
Bitwarden Bitwarden has a free version and some paid for subscription models available
Lastpass – lastpass has a free version and some paid for subscription models.