For those that store your information on an online manager

[joniboini]

Surprising that someone with a high position in a company like XRP stores their seed phrase on an online password manager. So the LastPass database has been fully decrypted by the hackers? IIRC they get the database backups from users but they need to crack them to look at the data. It should give them enough time to move their money if their password is good enough to sustain brute force for a week or so. I remember changing some of my passwords and ditching LastPass after that breach.

[tabas]

While it is good to use some password managers for your accounts. But I wouldn't do that with related to my crypto holdings, maybe some gaming accounts would do, but not a crypto holding. I'll choose to write them over on a plain paper and notebook to be kept somewhere in my house even it gets dusty and old.

A regular book and pen can act as your password manager, immune to hacks and to an extent loss, since you do not carry it around as you do your devices.

This works fine for me. Sadly, those who are against it will quickly cite fire incidence or emergency demolition as one of its demerits. They forget that its merits far outweigh whatever merits the online manager has in terms of safety.

This is a  risk for doing this, it's also working for me but I'll make sure that I'll have a back up for it that I can keep wherever I go but not with an app.

[Porfirii]

While it is good to use some password managers for your accounts. But I wouldn't do that with related to my crypto holdings, maybe some gaming accounts would do, but not a crypto holding. I'll choose to write them over on a plain paper and notebook to be kept somewhere in my house even it gets dusty and old.

There is no perfect solution for password management. Your paper or dusty and old notebook could be burnt or shattered because of a fire or flood, we've discussed about that when we talked about seed phrases.

And because of that, an idea just came to my mind. Do devices like hardware wallets but for passwords exist? that you plug in and log you in your accounts? and, if they exist, why aren't they so popular as to have reached my ears by now?

[7juju]

Storing private keys in a password manager is very risky, especially when it holds millions of dollars worth of crypto. People have come to trust technology so much these days and are willing to use it as there personal assistant to help make things convenient and quick, while ignoring the obvious risks involved

A regular book and pen can act as your password manager, immune to hacks and to an extent loss, since you do not carry it around as you do your devices.

There's no way I trust technology enough that will make me store the password of my wallet that contains my hard earned money in an online manager. The technology is it not humans that are controlling it at the backend? Surly it is humans and whatever humans are involved there's bound to be errors. And sometimes the people at the back end commit these acts and blame it on hackers. People take unnecessary risks which could have been avoided. Someone like me, despite using pen and pepper, I'm always checking where I stored it at least once a day to make sure everything is in order. I don't just want to hear stories or something. Maybe those people who take this kind of risks didn't struggle or suffer to get that money because if they had struggled like some of has been doing to raise a dollar, they would be more careful when it comes to storage of their passwords.

[Darker45]

1. Managing passwords and other important and confidential information doesn't require a degree in rocket science. Anybody who has common sense can easily do that. I wonder why others need a manager for that.

2. I can't trust anybody with a hundred thousand, more so with a million. It's therefore a curious case that somebody is trusting hundreds of millions to an online manager.

3. Just because somebody has achieved a lot doesn't automatically mean he/she is to be emulated. It's better to stick to what's highly recommended. In this case, a pen and paper.

[Bushdark]

Storing private keys in a password manager is very risky, especially when it holds millions of dollars worth of crypto. People have come to trust technology so much these days and are willing to use it as there personal assistant to help make things convenient and quick, while ignoring the obvious risks involved

A regular book and pen can act as your password manager, immune to hacks and to an extent loss, since you do not carry it around as you do your devices.

There's no way I trust technology enough that will make me store the password of my wallet that contains my hard earned money in an online manager. The technology is it not humans that are controlling it at the backend? Surly it is humans and whatever humans are involved there's bound to be errors. And sometimes the people at the back end commit these acts and blame it on hackers. People take unnecessary risks which could have been avoided. Someone like me, despite using pen and pepper, I'm always checking where I stored it at least once a day to make sure everything is in order. I don't just want to hear stories or something. Maybe those people who take this kind of risks didn't struggle or suffer to get that money because if they had struggled like some of has been doing to raise a dollar, they would be more careful when it comes to storage of their passwords.

I think it is only someone that doesn't understand how privacy works that would go as far to store their vitak information on a manager just because you think you don't have to forget such keys or information. Many people need to write and learn from different ways on how many scammers and hackers had stole from their victims. One of the ways is trying to put malwares on their victims devices so that such virus would extract their information from the device and send it to the hacker's database. This is one of the Sophisticated ways many do loss their information to the outside world why putting the blames on the wrong person or firms.

[Odohu]

It is no more new but more losses are always linked to LassPass which was an online password manager. Before the stolen of more information that the hackers are using to steal from people, we warned people but they did not listen. LassPass issue has started since 2021 or 2022 until hackers were able to have full access to people's information and using it to steal from them.

Millions of dollars stolen has been linked to LassPass hack but another one has been linked to it by crypto investigator ZachXBT again now.

Anyone who still use services like LassPass and got his asset stolen actually deserve what he got. How can someone ignore the numerous warnings about centralized platforms and still go ahead to store sensitive information in a third part platform? That is like handing your money over to someone else. It is always better to learn from the experience of orders than fall victim. Instead of using these online services, why not write it down or use steel capsule which is not too expensive and even safe under harsh conditions.

[tabas]

While it is good to use some password managers for your accounts. But I wouldn't do that with related to my crypto holdings, maybe some gaming accounts would do, but not a crypto holding. I'll choose to write them over on a plain paper and notebook to be kept somewhere in my house even it gets dusty and old.

There is no perfect solution for password management. Your paper or dusty and old notebook could be burnt or shattered because of a fire or flood, we've discussed about that when we talked about seed phrases.

And because of that, an idea just came to my mind. Do devices like hardware wallets but for passwords exist? that you plug in and log you in your accounts? and, if they exist, why aren't they so popular as to have reached my ears by now?

Well, you're right. There is no perfect solution for this. But the important thing to do is what works for each of us. If this record book and dusty strategy works for me, I'll stick to it. But if it's not, then I'll find another one that won't be a hassle for me as I keep my seed phrases and private keys. I guess this is one of the good problems out there when we understand how important this matter in keeping our own funds secured and the keys that we own.

[DPHOR]

It's not usually right to store personal information on password manager because as we know, our private keys are important to us and which we shouldn't in any way forget that whenever our keys are Open to everyone then the funds is no longer in control by only one person but to those people who also have access to the key. I don't for one day allowed auto save password because I don't know how secure the browser I am using could be.

[Bitcoin Smith]

Online password manager, the term online explains everything and it's like using a cloud to store the seeds of your wallet details.

There are offline password manager like Keepass which is open sourced that encrypts the data with AES-256 encryption but my suggestion will be always go for non digital ways, it can be simply writing down the things on a paper and hide in a safe place or like secret ways of steel engrave and similar methods to save/backup seed phrase.

If you can't do them just use an Airgapped device to store the details of you're sure that it will never be accessed by anyone.

I've tried to do this many times and to be honest, in my old days, five or seven years ago, I would write down the passwords to my emails and the passwords to my accounts on various platforms in my diary.
But the problems I faced there were when I left my diary at home and went somewhere and then I faced problems when I needed my password. Moreover, there is another fear that if my diary goes to someone or if someone unfortunately gets access, then all my Gmail and other platform accounts will go to them.
Since then, I have been keeping a Gmail as my primary account, maintaining privacy within it, writing down my passwords, and being able to access them digitally anywhere. I think it is better to trust Google than to trust other third-party websites.

If it's working for you then it's fine but Google is spying all our data that has been exposed multiple times so I would not trust Gmail, Google photos or any of their services to save any sensitive data. It's convenient but privacy is what the cost of it.

I would rather trust Proton cloud storage than Google's, and there are other encrypted cloud storages too but I don't have any personal experience of using them so I don't wanna suggest any names without first hand experience.

[Crypto Library]

If it's working for you then it's fine but Google is spying all our data that has been exposed multiple times so I would not trust Gmail, Google photos or any of their services to save any sensitive data. It's convenient but privacy is what the cost of it.

I would rather trust Proton cloud storage than Google's, and there are other encrypted cloud storages too but I don't have any personal experience of using them so I don't wanna suggest any names without first hand experience.

I will not deny your words because it is true that Google also spying in our data and also there top revenue generator is also our data what they are selling to the others company,  And that later comes to us as an advertisement.

However, in my opinion, there is no other good way to store our private data, but I can give a suggestion here, I don't know how useful it will be for others. But it really work for me-

 That's why I always try to make my passwords with numbers, uppercase and lowercase characters, and special character and  I divide my password into two parts. I memorize the numbers so that I will never forget them.
And I save characters and special characters as separate parts in my Google Keep. This way, even if someone easily gets access to my Google Keep, they won't be able to log in with the password.

[Cryptohygenic]

I do not know how someone will be able to sleep comfortably overnight and have a private key that have access to millions of dolar worth of coin on an online manager.

The online password management site has been working effectively and reliable reliable for long on before the notorious hackers were able to gain access and comprised the whole trusts and Privacies. So it was not that the site has been a weakly to hold users privacies efficiently.
One thing is sure that there are threats to how we can loose our funds at every means which we stores our private keys. Even the offline s storage system can not be 100% trusted rather we just need to be always careful and attentive to exit where we find suspicious that our Privacies is not sure anymore.

[AmaGold70]

Storing private keys in a password manager is very risky, especially when it holds millions of dollars worth of crypto. People have come to trust technology so much these days and are willing to use it as there personal assistant to help make things convenient and quick, while ignoring the obvious risks involved

A regular book and pen can act as your password manager, immune to hacks and to an extent loss, since you do not carry it around as you do your devices.

There's no way I trust technology enough that will make me store the password of my wallet that contains my hard earned money in an online manager. The technology is it not humans that are controlling it at the backend? Surly it is humans and whatever humans are involved there's bound to be errors. And sometimes the people at the back end commit these acts and blame it on hackers. People take unnecessary risks which could have been avoided. Someone like me, despite using pen and pepper, I'm always checking where I stored it at least once a day to make sure everything is in order. I don't just want to hear stories or something. Maybe those people who take this kind of risks didn't struggle or suffer to get that money because if they had struggled like some of has been doing to raise a dollar, they would be more careful when it comes to storage of their passwords.

You said my mind @7juju, I don't trust technology that much no matter how encrypted they say it is, I mean, these things are controlled by humans right? There is corruption everywhere and trusting my pass key worth millions to an online manager sounds like something I wouldn't do even in a thousand years to come. What happened to a pen and paper? I'd rather write down my private key for my family to see (which I would never do though) than to hand it over to an online manager, private key, the private there is for a reason and it should be kept private. Let's be wise and careful out there.

[promise444c5]

LassPass ....LassPass ....LassPass

You have used the word LassPass three times in the OP, which made me think that it is not a typo but a new service, just like LastPass. But when I searched on Google, I did not find any service with this name. So, I assume it is a human error.

That was obviously a typographical error, if you checked from the the other quote in the thread OP posted you will see the correct spelling as "Lastpass", I did search that and I found a result, you could do that again

But come on, guys, you don't have to use all of them. Password is a too sensitive thing. Remember your password. If these service fails somehow, you have to pay too much for that.

That's  where flash drives comes in but flash drives can still  be compromised on a compromised device, plus getting corupted .. the reason why some of this sensitive info should be written and well protected safe somewhere.. yet flashdrive is still the most perfect for the job.. multiple backups can still be used in both cases. In case of unforseen events although non is still perfect.

[_act_]

You have used the word LassPass three times in the OP, which made me think that it is not a typo but a new service, just like LastPass. But when I searched on Google, I did not find any service with this name. So, I assume it is a human error.

It was a typo. On the quote, the correct name is there. Or if you click on the link that I posted. It is LastPass.

@promise444c5, thanks for letting him know.

[nakamura12]

It is really unfortunate for that person to lose that amount because he stored his private key using a password manager. I wonder why he used an online password manager when online apps aren't safe when storing something important or a vital information. I didn't even use a password manager not even once to store anything even my password because even if isn't an online app as long as it is connected to an internet then there's a chance that it might get hacked.

[OcTradism]

1. Managing passwords and other important and confidential information doesn't require a degree in rocket science. Anybody who has common sense can easily do that. I wonder why others need a manager for that.

2. I can't trust anybody with a hundred thousand, more so with a million. It's therefore a curious case that somebody is trusting hundreds of millions to an online manager.

3. Just because somebody has achieved a lot doesn't automatically mean he/she is to be emulated. It's better to stick to what's highly recommended. In this case, a pen and paper.

Security and privacy practically are most important things for Bitcoin investors and holders.

Stay humble, keep up your privacy, and maintain good security practice, you will have less attention from others and your devices as well as Bitcoin wallets will have less risk of attacks and compromise.

Security and Privacy Encylopedia
Bitcoin security resources.
Bitcoin privacy resources.

[God Of Thunder]

It was a typo. On the quote, the correct name is there. Or if you click on the link that I posted. It is LastPass.

Yeah, I mentioned in my post that I guess it was "human error". But as I said, when you make the same mistake multiple times in the same posts, it can make someone confused. Since you have used the world three times, I thought there was a new service with that name. However, I came to understand that it was a simple mistake. No offence at all.

That's  where flash drives comes in but flash drives can still  be compromised on a compromised device, plus getting corupted .. the reason why some of this sensitive info should be written and well protected safe somewhere.. yet flashdrive is still the most perfect for the job.. multiple backups can still be used in both cases. In case of unforseen events although non is still perfect.

I do not use Flash Drive, LastPass, or anything to store my passwords and send phrases. I got a hardware wallet from my friend, and I wrote the seed phrases on a piece of paper, which I safely stored in a secure place. I kept another copy in case I lost it. I try to remember my passwords. In case I forget, I always use the forgot password option.

[Crypto Library]

I do not use Flash Drive, LastPass, or anything to store my passwords and send phrases. I got a hardware wallet from my friend, and I wrote the seed phrases on a piece of paper, which I safely stored in a secure place. I kept another copy in case I lost it. I try to remember my passwords. In case I forget, I always use the forgot password option.

What do you say? You got the hardware wallet from a third party, was it actually new or old? If it's old, you'll have to be in a lot of tension about the security of the Private Phrase. Even that was your close friend.
By the way if you purchase the new unboxed via your friend let me know the process I want to also have one for experiencing and empowering my holding fund.

And then my one question to you is, what do you do when you are away from that place and need access to that wallet if you have physically stored the private phrase?

[BABY SHOES]

Storing private keys in a password manager is very risky, especially when it holds millions of dollars worth of crypto.

I wonder how people still store their private keys with password managers when it can be compromised because we are in a digital age now where no matter how encrypted any system proves to save your information from being tampered with, it cannot be 100% trusted and it will be a careless behavior for someone to entrust their security details with any password manager even after coming across different cases where users got defrauded of their coins.

That's like storing private keys with a third party, right? Online password managers are unreliable, hackers have ways to break into them why don't they just write it down on paper and keep it at home without anyone knowing? It turns out that many people still trust password managers.

For me, it's better to write down my private key on paper and keep it in a safe place... no one knows.
For any password, it must be memorized by heart, no matter how complicated the password is, it is easy to remember.
Some passwords are also written down on paper.