The Best Password Management Apps to use in 2023

“Avoiding danger is no safer in the long run than exposure.”

Hellen Keller
cybercriminals are attacking email, mobile, and personal communications channels to reach victims. SlashNext recorded a 50% increase

This will be our inaugural address of the importance of using a password management app/software. If there is one thing that drives any and all IT professionals crazy is the “password” problem. When I say crazy, I need you to go a little deeper and think Dr. Jekyll and Mr. Hyde if you will. When we are asked to help with a problem and we have to spend X amount of time getting the password it’s already too much. A basic sense of security should explain how important a password is, right? If it is important then why would a person use one that anyone that knows them could figure out? Birthdays, lucky numbers, favorite phrase, I mean it’s impressive that you think these things are all unique. Passwords need a little more thought. Remember passwords give access to our future and the current financial situation. Who would you trust with that?

So before things get heated, lets explain what PM “password management” software is. Password management software is software you download on your phone, tablet, or computer. This software stores your passwords so you don’t need to remember them. Log in once with a ‘master’ password and it will generate and remember your passwords for all your online accounts. You WILL need to remember that one master password (or passphrase) which means you only need to memorize one thing. Use the “one password to rule them all” more efficiently so to speak.


PM apps are great because you can use secure passwords of 12, 18, or 20+ characters long. You already know longer passwords are more secure. The more variables involved in the password the better and PM apps give you the ability to add several. They also give you the ability to save, auto fill, track the history of and more of your passwords. Just think of them as your password vault that not even they have access to.

So in no particular order the Best Password Management Apps to use in 2023 are:

  • Dashlane
  • Bitwarden
  • Password Boss
  • KeePassXC
  • Last Pass

We here at SofTouch Systems don’t believe in one way being the “only” or “best” way. So we will just highlight one or two things that makes each one special or different from others. As with most things, it boils down to which one checks all the marks you and your business needs. You can’t go wrong with any of the afore mentioned applications. Not having one is far worse than having one that doesn’t do EVERYTHING you want.

Dashlane

Dashlane is one of the more recognizable names in the PM software industry and for good reason. To stay in business in the tech industry for this long says something about your client base and product. According to Crunchbase New York USA based Dashlane has between 251 and 500 employees with more than 210mil funding. With nearly 3 million visits and 77 thousand downloads per month, it’s safe to say they are an industry leader. The company boasts services such as dark web monitoring, wifi VPN, password generation, personal storage. On their paid individual accounts they offer free friends and family. They offer on-demand phone support for business accounts.

BitWarden

If you haven’t heard of BitWarden then keep reading because this app is loaded and best part, it’s open source! By CRUNCHBASE’s count the California based company has between 101 and 250 employees and 100mil in funding. In the last 30 days they have seen close to 4mil visits and 170 thousand downloads. For most of their client base, the fact they are open source is it’s biggest appeal. They also offer unlimited devices and free sharing for 2 users across all plans. They are worth a look. As a bonus, they offer free trials, even for business accounts.

Password Boss

Our next entry is a small company but don’t doubt the size of the company. We all know that size doesn’t mean the same when it comes to technology. You ultimately want to pay for an unbreakable code and for that all you need is well written code. Enter Password Boss, CRUNCHBASE has them at a modest 11 and 50 employees and not enough funding to post. They opened in 2014 and have built their product to be used along side a businesses suite of products. Their product is open source so it is easy to integrate but it is also available to individual usage. They boast a remote control tool integration, multi-devices access with mobile synchronization, centralized management portal and dashboard.

KeePassXC

Our next entry is a relatively ancient to the scene and another that boasts open source programming. But unlike most it also has offline access and is seamlessly cross-platform and is based in Metzingen Germany. KeePassXC is one of the smaller companies on the list but only in terms of personnel. Their size doesn’t stop them from being super integrated. No matter the OS or browser you use, they have an extension. Also for those that know open source products will find KeePassXC works on all their platforms. Another feature is that the app will work with all of your platforms concurrently.

LastPass

Our next entry in the Password Management applications is one of the biggest in the industry. Based out of Boston Massachusetts, LastPass, is one that we have tested. (we are not being paid for this review.) As per CRUNCHBASE, Last Pass has between 1001 and 5000 employees and they are a publicly traded company. Founded in 2003, aka 3am Labs, aka Logmein, is the giant in the PM industry. Last Pass is super easy to use, very user friendly and they have apps for all of your devices. They have won every award you can win, they deserve a lot of praise.

So if you’ve made it to the end of our list you’ll notice that we like them all. It’s much like ice cream one may be best for you but that’s just from your view right? The truth is, they are all so good at what they do. The important take away from this article is that there is no excuse for losing a password. There is no reason your business, organization, or group should ever spend any time on passwords. The sheer cost alone for searching for, unlocking, resetting, or anything having to do with a password is astronomical. Don’t spend company funds on internal liabilities created by you or your employees. Instead create a culture of progressive thought and preventive planning to minimize your security costs.

Need to Know Info: Microsoft ending support for Windows 8.1!!

The time for change is now for Windows 8.1 users. As previously scheduled, the time has come for Microsoft to drop it’s support. As happens, once programs are no longer updated, they become a liability and problematic to say the least. I know the Windows XP lovers of old know your pain but rest assured, you’ll fall in love again and yes, Windows lovers, Microsoft has even simplified the process of upgrading. So as of January 10, 2023, Microsoft will be calling it quits on all security, software updates, and technical support for Windows 8.1. Of course, this doesn’t mean that your PC will stop working, it only means that your PC will become vulnerable to new security breaches, which can leave you and your network at risk for malware, ransomware and other baddie created “ware.” Many baddies like to exploit un-patched systems due to their Swiss cheese style security. The longer your computer remains un-patched, the more vulnerabilities will be found.

Windows 8.1 born 2013 died 2023 (fortune tellers we are)

It’s not just the massive amounts of holes an unsupported OS creates, it’s also the other programs and applications you use on the OS that can begin to malfunction as well. Once developers see there is no support for an OS they no longer update their programs, either, which means your Google Chrome, MS Office and other programs may have adverse effects, or you may not get the newest updates and features for them. This is what it means to have supported software.

Additionally, if a person chooses to stay with an unsupported OS, when they do have any problems they will have to get help from a third party support company and it is our understanding that these types of companies will charge a premium for their services.

Microsoft released Windows 8.1 in October of 2013 and it was an upgraded version of the lackluster Windows 8. Back in the early 2000’s, software companies started the trend of numbering their newest generations 1.0, 2.1, 2.372 and so on instead of creating and marketing a new OS name. OS maker Microsoft had released a very, very buggy version the prior year and to keep from sinking the proverbial ship, they quickly responded to feedback and 8.1 was born just 12 months later.

The problems with Windows 8 were challenging in that Microsoft was figuring out how to create a cross-platform operating system. The product was built with user experience in mind because in the early 2010’s, mobile phone and tablet markets were gaining much more traction than previous years. So Microsoft wanted the end user to instinctively understand how the product would work on any given device. This is why there was no start button, no reboot, and a strange UI. Chalk it up to growing pains.

Now that we know the why, let’s get to the how. Microsoft was running an offer for a free upgrade to the next available OS which is Windows 10, but that offer has long since expired. You CAN however, still get a free upgrade from Windows 8.1 to 10 by using your Windows 8.1 product key. But in the event you aren’t a fan of change, you may want to explore your options to download Windows 11 which is currently available if your PC meets the standards. The reason you might as well skip Windows 10 is because Microsoft has already set a date for stopping support for Windows 10 in October 2025. Speaking of PC’s meeting the standards, Microsoft suggests that customers that are currently running Windows 8.1 should upgrade their computer to one with Windows 10/11 already installed because their PC requirements are extremely strict. Contact us if you need any help finding a solution that fits your business needs.

For nearly 30 years SofTouch Systems has worked with clients to create the total IT security package together. We are able to offer the full gambit of IT services at a fraction of the cost of an “in-house” IT. We are partnered with schools, churches, and private firms alike and privacy and security are one and the same for us. If you don’t have one, you won’t have the other.

Top Phishing Scams in 2022 and how to stay safe.

We’ve asked around to several industry leaders to compile our list of the top phishing scams of 2022 and how you can protect yourself and your business. One of the biggest red flags we saw in our research was a recent report from SLASHNEXT, in which they recently analyzed billions of link-based URLs, browser channels, emails, attachments, and mobile messages and found that in the 6 months of research there were more than 250 million attacks. If that number doesn’t scare you then the next one will. SlashNext stated that was a “61% increase from 2021.” That’s an aggressive one year change. There is no such thing as the perfect email filter so it’s up to us to weed out the less obvious and at times well designed scams. SofTouch believes in behavior-based security as a proactive approach to security in which all relevant activity is monitored so that deviations from normal behavior patterns can be identified and dealt with quickly.

The first line of defense to any invader is knowledge. An act of aggression can not be defended if you don’t know what’s coming right? So, combined with a strong MSP (managed service provider such as SofTouch Systems) and a bit of proactive education, you can be safe from scams such as job scams, email phishing, and other opportunistic schemes designed to take advantage of others.

1. Google Voice Scam

Sometimes our phone numbers make their way into the wrong hands. I’m sure most people have been called about an “extended warranty” at this point if not, you know someone that has. Scammers or “baddies” as I like to call them will get your phone number from any number of social media sites you use when you asked for a restaurant reference, buying a car, furniture or any interaction you have had and they will reference the post for validation. The next thing they will do is ask you to verify you are the person that made the post and that you aren’t in fact “a scammer.” The first thing that happens is they will have a Google Voice send you a “verification” code. (Google Voice is a VOIP which makes this scam possible) The “baddie” will then ask you to “verify” that code to them. Once you read it back to them, they’ve got what they need because now, thanks to you, they have a Google Voice phone number/account set up as you. From here they can use YOUR Google Voice phone number to cover their tracks for other scams. This may be a low “impact” scam on you personally, it can have serious ramifications for everyone else to include those closest to you.

Our best advice to protect yourself from this style scam is two part. 1. NEVER give out verification codes, passwords, or anything that could be considered confidential to anyone. If you don’t trust your own instincts, ask a professional. In the event a professional is not available when you want to know if something is confidential, be patient and wait until one is. 2. If you must put your number out there, make sure you have a two factor sign in set up with your carrier. Be sure to save your information somewhere secure. HAVE WE TALKED ABOUT PASSWORD MANAGEMENT?

2. Program Assistance Scam

This is another really broad scam that has seen surges post pandemic. With less than confident media sources available to the masses it can be difficult to know what assistance programs are available and who they affect. In 2021 we saw state and federal assistance programs available some needed to be applied for by a certain sector and this opened the door for “baddies” to play real life Among Us and pretend to be associated to these programs. Programs to watch out for; rental assistance, FEMA payments, college tuition, social security, and IRS.

Our best advice to protect yourself from this scam, is to do your due diligence. Make sure you verify who it is you are communicating with. Get them to send you an email but you tell them what to use as the “subject” line so that you will be able to find it easier. Ask for a call back number in case of the call getting dropped and then purposely drop the call and call them back. Use your best judgment but remember the more vigilant you are about security the less likely you will be a victim.

3. Job Scam

Not everyone has job security and that leads to many of us keeping our toes in the water to see if our services might make us more money elsewhere. Keeping a profile on LinkedIn, Monster, Indeed, or the like can’t be avoided because, well, that’s where the jobs are. What happens is that baddies will pretend to have a job for you. (Yeah the old carrot and the ass treatment) They will be after as much information as you are willing to give them and trust me when I say everything you say will be kept and recorded and saved as data somewhere. Then they also might have a high paying offer for you but you will have to pay to apply for this job. If you send them the funds they will promise you a job that fits perfectly and will be hard to resist.

Our best advice to avoid a scam like this, 007. Do your best “James Bond” and create a “job searching” profile. Create a free email account, create a free VIOP account, and remember not to share more than a person can learn from your resume. Also if you get a job offer, independently call that companies HR to verify. Doing your homework didn’t stop after school, they didn’t tell you?

4. Fake Employee Scam

A recent study shows that 1/3 of the fake employee scams were when the “baddies” do their best “Amazon” employee. We are all affected by online impostors, it destroys trust and creates a chaotic atmosphere where the “baddies” benefit most. Amazon is targeted because they are the largest brick and mortar-less entity but all businesses are at risk. “Baddies” will contact you about a package and need you to click on a link or open an attachment. This scam is one of the oldest known to man and has many different paths that can be taken depending on their method of delivery. If you click a link it will take you to a very real looking “sign in” page for the retailer/vendor in question but if you put your details and hit enter, you will have just given them your user name and password. NEVER use a link connected to an email account you don’t recognize. Get used to paying attention to email names. If

5. Gift Cards

The old “gift card” scam isn’t going away anytime soon, not as long as you can exchange cash for plastic. Now this type of scam either happens to people with terrible friends or friends that aren’t very good at taking care of their identity. If one of your “friends” contacts you on social media and they are “frantic” about whatever situation they have found themselves in and they need your help. Now if the only way they can help you is through gift cards, I’d be willing to be with 90% accuracy that this is in fact a scam. Maybe your friend had their identity stolen or possibly they themselves are caught up in a scam and aren’t aware. If you buy a gift card, put it in a stocking, envelope, or just hand it to the person you want to have it because any other use is just shady.

Our advice to avoid this scam, follow our previous advice of not sharing ANY verification codes, passwords, or the numbers on the back of cards. Unless you are speaking to a business and using a card for the purchase, you should never share your cards information. Every day we take the risk that the business that we are using will treat our bank information securely and that risk will always be there. Again, know who you are talking to, working with, and paying.

8. Peer to Peer (P2P) Payments

This one is new to the current generation of scams where in people are getting scammed while using P2P platforms such as Zelle, Cash App, Venmo, and such. The P2P platforms are not scams, these are just the format in which the “baddies” use to get your money. Ultimately you have the power here. Just don’t send businesses money using these platforms.

Our best advice for avoiding a scam using the P2P platforms again goes back to doing your “due diligence” and knowing who you’re sending money to. The reason “scams” are hard to convict is because the “baddie” only talks people into giving away things. Usually they are after money but there are other times when they want information, emails, leverage, or any number of things they can use to their advantage.

SofTouch Systems Newsletter.

Stay on top of modern IT business trends, tips, news, along with STS product reviews, updates, and more.