6 reasons to ditch your third-party password manager and avoid data breaches like LastPass. In the words of @DanielMiessler.

(thread)

1. Nobody is better at protecting passwords than the three primary providers: Google, Apple, and Microsoft. I would trust any of those three more than any third-party company to protect my passwords. Why?

2. They have the most to lose from their security being bad, so they tend to invest heavily in it.

3. They have full researcher and threat intel teams to support their product security teams.

4. If their auth mechanisms were to get compromised it would likely be very loud, meaning it would be hard to keep a secret for long.

5. Any damage that was done would be handled fairly well, and the response would be quick.

6. Auth/password handling should belong to your OS, not to third-party apps.

Read the full scoop here: https://danielmiessler.com/blog/my-philosophy-and-recommendations-around-the-lastpass-breaches/

7. For more infosec bites: like, retweet, and follow me @cristivlad25.

#infosec #pentesting #cybersecurity #appsec #databreach