Burt has a Motorola Max mobile device and an iPad. He got a notification to update his security and contact list on his phone, but the iPad gave him a notification that his Google password had changed without his knowledge. Leo says that's worrisome. It sounds like someone may have hacked his Google account. Leo advises going to iCloud.com to see if he can log in. If he can, then his AppleID is likely secure. But Leo advises changing the password again to verify everything.
Jason wants to know if using a password manager on a mobile phone is a good idea. Leo says absolutely. It will keep track of all his passwords so all he needs to do is remember one. Leo likes Last Pass, but many iPhone users prefer 1Password. Both are equally good. There's also DashLane. Any of those three will do the job. He should just make sure he creates a difficult password to crack, but one that he can remember.
Andrea's mother has problems remembering her passwords. What's the best way to do it? Leo says we all have a problem remembering them, and if it's easy to remember, there's a good chance it will be easily cracked. She'll want her password to be difficult, but by extension, that makes them difficult to remember. Writing them down isn't a bad idea as long as nobody has access to them. A password vault would be a good idea, where she would let the software generate all of her passwords and all she needs to remember is the master password.
Brian has tried several password vaults and he finds them all inconvenient. His frustration is that using his mobile device doesn't always work so well. He ended up on LastPass. Is that a good choice? Leo says yes. It's the one he uses. 1Password is another one, and it has the advantage of being able to save the vault somewhere else.
Mark wants to know if password vaults are safe and what the best one is to get. Leo says yes, they are best because they generate impossible to remember passwords and keep track of them, so Mark would only have to remember the one password to open his vault. Leo uses LastPass. There's also 1Password. It's a valuable tool that everyone should use.
Mark was using the same password for every site he went to. Leo said that he used to do the same thing. The importance of password security has snuck up on us, and we should all really be using a password vault like LastPass or 1Password. The main important difference between LastPass and 1Password is that LastPass keeps your vault on their servers, whereas 1Password gives you control over where the vault is stored. Each are very securely encrypted.
Yogi uses a text file to store all his passwords. It's encrypted, and his passwords are randomly generated. He then cuts and pastes the password to enter it. Is that safe? Leo says yes. If his computer has a key logger, it can't read a cut and paste like it can his typing. An easier way, though, would be a password manager like LastPass or 1Password. Steve Gibson also has a password generator at grc.com/passwords
Kevin is looking for a password vault or manager to store all his passwords. Leo says that the best password is long and strong, with random characters, letters, and punctuation symbols. But he'll never remember it. That's why Leo recommends LastPass, which can not only generate the passwords, but also can keep them safe. 1Password is another. This also creates a single point of failure, though. There's nothing wrong with having a notebook that he can write them down in.
Bonnie wants to know why the user interface of LastPass had suddenly changed. Leo says its a good question, and programs do this all of the time to keep them up to date. Leo says a password vault is kind of a special thing, something that people need to trust. LastPass had been sold from an individual to LogMeIn about 6 months ago. One of the reasons he did it is because LogMeIn has more resources, and one of the things LogMeIn paid to do was update it to something more elegant. Bonnie can go back to the old style, however.
Joan uses Gmail for her webmail. It keeps asking her if she wants to save her password. Leo says that sounds like her browser is doing that, and she's using Internet Explorer or Microsoft Edge. Leo recommends Google Chrome because both Microsoft browsers have the ability to save the password, but it's not encrypted or protected. It sounds like it's not even doing that, though.