Made the move to Bitwarden free version for now. Seems for the most part it works better than LastPass especially on Android. I will miss some of the sharing features but the differences are not a big deal.
I'd be happy with MS Authenticator if it worked better with multiple sub domains. My dev environment has sub domains for jira, teamcity, octopus, and so on. I use the same username with different passwords for each system. MS Authenticator only offers one username/password for those sites unless I open the full password manager and search for the one I need. Until that's improved, I'm switching to Bitwarden.
@@fescen9 Sure. Bitwarden is the solution for you. Microsoft Authenticator's password manager is still a version 1.0 product. Hopefully it will get some improvements going forward. Still, it may never be the right solution for users with more advanced needs.
Bitwarden! You said that Bitwarden doesn't have any fingerprint authentication or facial identification features, but I got It. I think they have released an update.
The Bitwarden app does support biometrics on Android... It's under Settings->Security/Unlock with Biometrics. The app was last updated was Jan 21, 2021 so you must have just overlooked it.
Yeah, just jumped ship off LastPass and quickly found the option to unlock with fingerprint. Only thing I'm curious about is the advantage of using that TOTP vs what I just switched to, Google Authentication for 2FA side of things.
@@Sryously You can secure your Bitwarden password vault with 2FA using apps like Google Authenticator and Microsoft Authenticator. It helps protect your Bitwarden master password. Bitwarden also has a built in TOTP generator but it requires a Families, Teams, or Enterprise subscription. Although the TOTP storage feature is available to everyone. If you used a security key, like Yubikey, to secure Bitwarden, then I guess in principle a separate TOTP app like Microsoft Authenticator wouldn't be necessary.
Check out my latest video on moving from LastPass to Bitwarden where I show you how to export and import your passwords in 2 easy steps 🎬 ruclips.net/video/RB3exDydjiM/видео.html 🎬
@@RussellSmith It would be in the best interest of this video to add a note to the part of the video where you talk about not being able to use biometrics on Android.
@@RussellSmith Yes, Bitwarden made a mistake by not having biometric identification enabled by default, hopefully they will correct it in future updates. I think that this is an option that many users may overlook in the settings, so it would be better as as an option activated by default to opt-out of rather than one you have to search for to be able to opt-in.
Thanks for the video. I have a question if you dont mind, what do you do on your desktop with bitwarden? i really dont want to try my master password each time i close chrome/firefox, you mention it doesnt work with metics on your andriod, that you had to type it, but what about the destkop, is there a way not to type it each time i close and open a browser?
Glad you liked it! On your PC, install the Bitwarden app from the Microsoft Store. The app gives you the ability to set the vault timeout, which is 'never' by default. But you can set a value, like 30 mins, or an action, like 'on system lock'. Additionally, you can unlock the vault using a PIN, which is simpler than your master password. And the app integrates with Windows Hello, for biometric unlocking on Windows. The Android app does support unlocking the vault with biometrics. It just isn't enabled by default. You need to go to settings and enable it.
@@RussellSmith Thank you very much for your replay. Because of your post, I manage also to search for that option on the Chrome/Firefox app, its very simple, on the app, under settings > security > vault timeout > NEVER does the trick. Now im really ready to leave LastPass, thanks again.
On the Bitwarden website and videos, it does say you can use biometrics to open Bitwarden on android devices. Am I missing something as you mention that it doesn't work for androids at 3.40? Edit. ok, I saw the comments and the updated note in the description, but it would have put me off if I didn't cruise the comments or full description for this info.
I am struggling with whether I should stay or go as I do not use LastPass on my phone. I am not happy with what they are doing, but I have noticed that in Brave the app for the desktop does not launch the site as I have seen in Chrome. Is this normal? Not sure.
If the changes don't affect you, maybe you should stay put? LastPass is still a good product. I've never used Brave so I can't help you with that question unfortunately. Email LastPass support while you still have the chance as a free user 😉
At least the host is honest with your question. I respect that in a good youtuber. Many are biased amd partial due to ads and affiliates. Hes pretty forward and not biased. I don't care about the little $35 for what it gives. I pay and if your account is ever compromised, you can set parameters to have a close family or friend with premium get your account back. No others do that. To me, its 100% not worth me moving.
That's a perfectly valid option too. The problem for LastPass is that there are free solutions that do the job just as well. And sometimes, even better.
@@RussellSmith But you'll (not you but in general) pay $5 for a latte at Starbuck's without hesitation. And there is nothing free that comes close to Lastpass Premium. Be honest.
@@91326 I'm not saying you shouldn't pay for LastPass. That's fine and worth it if you need the premium features. But there are options for those who don't want to pay. Bitwarden also has a paid option for enterprise-level features.
Yes. My main camera was in service so I had to film this on my webcam, hence the terrible quality. And for some reason, there was an issue with the sound as well.
Hello, great video. So took your advice and deleted my account with LP and installed the free Bitwarden. So far I am liking it, however, two minor things 1) If I already have a password in Bitwarden vault and I launch the website I have to either go to the browser extension and select the account or right-click on the password field, then click on Bitwarden to fill in password ...... is there a way to do one click to fill a password either with the free account or the paid account? I don't mind paying as it's affordable. 2) This one bugs me, when I change any password, Bitwarden does not update the new password automatically, I have to add it manually in Bitwarden. If I am adding a new password for the first time it works perfectly fine but when I am changing a password I have to do it manually. If that's the way it works, could you recommend another password manager? Please don't say LP, I am so unhappy with them...... I will never go back to LP, what they are saying to free users is, on March 16th we are calling the new free service, FREE but we know most likely most people wouldn't be able to use and have to pay but we will still call it a free account. I don't know who LP thinks they are. I prefer to pay for another password manager than go back to LP.
Repeating this reply here for those who didn't see it on the other video: Glad you liked the video. I can't say anything about the Bitwarden browser extension. I never used the LastPass browser extension and I'm not planning to use the Bitwarden one either. So, I can't tell you how it works or whether it has the functionality that you are looking for. But Microsoft Authenticator password manager/autofill will automatically update your passwords. You need an extension if using Chrome or otherwise the functionality is built right into Edge.
(Update: RESOLVED this issue) I've been paying for LastPass for years. On my mom's account she switched her phone number, so before it logged out and locked her out, I changed her email address and phone number. It logged me out and asked me to log back in. When I went to log in, it said "Send SMS" code to login. I clicked the button, nothing happened. It never asked me to setup 2FA, and I have access to the email and phone number. However, as I stated, clicking "Send SMS" doesn't do anything. I contacted customer support, they said "too bad, we don't care. We can delete the account if you want." Therefore, a bug in their system, locked me out of Lastpass and they won't fix it and don't care. I'll be moving to another service because I have the access to the email address, the master password and access to the phone number, and told them the date I created the account and everything else, and they still can't help me.(Update: RESOLVED this issue)
Strange. They must have a process for granting assess to accounts protected by 2FA when the second factor is lost or not working. If not, that's a serious oversight.
@@RussellSmith I know right? How can I have the login email and password, the phone linked to the account and access to the email address, and not be able to login to my moms account? That makes no sense to me.
@@RussellSmith Here is what Santiago from LastPass said: "At this moment, I'm afraid that if the recovery options are not set up in the account the only way for you to gain access to your account is by resetting the account." resetting means, they erase everything, but you keep your login email address and maybe the password. How is that any different than deleting the account and creating a new account with the same email address? It is no different. How can they think that is a solution anyone would choose?
@@RussellSmith Needless to say, I'm pissed off. A bug on their end, locked me out. That isn't a feature I'm comfortable in trusting anymore. I've exported my list and imported into BitWarden, but my mom's account is forever lost. I should make a youtube video showing the entire issue.
@@FusionDeveloper When you enable 2FA on a Microsoft Account, you are forced to provide recovery options. Strange LastPass doesn't enforce this by default.
LastPass employees can see every website URL you saved a password for in plain text. So if you save a password for something like "I have a personal embarrassing private medical condition", everyone at LastPass can see it. Let this be a warning if you also save a password for a website you shouldn't be visiting or what bank you use.
CAREFUL: Microsoft Authenticator doesn't have export option! If they played it shady, you have to pay. no other option. I suggest bitwarden all the way.
Pretty good video describing the Lastpass controversy. But I disagree with your recommendation of using MS Authenticator for storing passwords. There are a number of reasons against recommending the use of MS Authenticator for storing passwords, but imo the one major strike against MS Authenticator is its lack of end-to-end encryption. In light of these world-wide security breaches happening at every major corporation, E2EE is an absolute requirement these days!!! Both Lastpass and Bitwarden operate on the premise of encrypting everything client-side (locally on your device) using common javascript crypto libraries BEFORE uploading only ENCRYPTED data to the cloud for backup & storage. Bitwarden/Lastpass are never sent the raw encryption keys (based on your password) to decrypt the data they are hosting. So if/when these companies are breached and their DB's are exfiltrated, hackers only get blobs of encrypted data. And no, Lastpass/Bitwarden don't know your password. I know it sounds illogical since you had to create an acct & password to sign up, but it's true. They don't know your password... it's a too long conversation beyond the scope to explain how this is possible, but it involves cryptographic client-side hashing of your password. Anyway, Microsoft Authenticator is NOT end-to-end encrypted. Meaning Microsoft retains the encryption keys used to protect your password vault. Oh sure, all your passwords are certainly encrypted on a MS SQL Server back in MS's datacenter. But that data is encrypted with an encryption key KNOWN TO MICROSOFT... meaning somewhere on MS's networks are the keys to the kingdom... meaning theoretically accessible to network intruders. Bitwarden/Lastpass don't have this problem b/c they simply don't have your encryption keys and therefore can't leak them to hackers.
I agree that use of end-to-end encryption is usually preferable. But for many users who allow their browser to 'remember' passwords, it's probably just academic? At least in Edge, if you are signed in to the browser, any passwords that get 'remembered' are synchronized to the cloud. Although I'm not sure whether password sync in Edge is enabled by default.
@@RussellSmith I suppose it is "academic" for "most" people, but that's just another way of saying those people are oblivious & just don't care. But being oblivious doesn't keep you safe... and when that data is literally the passwords to your Bank, the IRS, your 401k fund... knowing how your data is protected, or not protected in the case of built-in browser PW managers, is critically important. I'd venture the same people who will blindly use MS Authenticator & Edge to store their passwords are the same ones clueless to the fact Microsoft was also breached during the massive SolarWinds attack and had source code to Windows exfiltrated from the company's network. If they can steal Win10 source code, they sure as heck can steal databases containing all your passwords along with the encryption keys MS used to encrypt that DB.
@@EricS-uf9mv I'm not sure that it's they don't care. They just don't know. LastPass has also had its security issues. There's no such thing as 100% secure. It's always a question of assessing the risk and then balancing security vs convenience.
@@RussellSmith " LastPass has also had its security issues." There's a MAJOR difference between implementation/execution mistakes which exist in ALL software and can be identified & fixed Vs. a *fundamental* weakness in the overall security architecture which cannot be fixed. Am I happy with coding oversights? No! But issues can be quietly reported & addressed via a bug bounty program. OTOH, you simply can't fix in inherently insecure security architecture without rebuilding the product from scratch! Simply put, Bitwarden/Lastpass are E2EE while MS's solution is not. I think i'll leave it there. Ppl have enough info to make a wise or unwise decision. It's up to them. Good day & keep making vids!
@@EricS-uf9mv Thanks for the interesting discussion! I will reach out to Microsoft and try and get a definitive answer about how encryption is deployed in the Authenticator app. If I get an answer, maybe I'll even make a video about it 😉
Microsoft Authenticator is the worst does not sync correctly and randomly delete`s password spent over 2 hours to try and get it to work. I think I will opt for biwarden
Will you be upgrading to LastPass Premium or switching to another password manager like Bitwarden?
Made the move to Bitwarden free version for now. Seems for the most part it works better than LastPass especially on Android. I will miss some of the sharing features but the differences are not a big deal.
@@TheOrbins Great! I'm sure Bitwarden will be a worthy replacement for LastPass.
I'd be happy with MS Authenticator if it worked better with multiple sub domains. My dev environment has sub domains for jira, teamcity, octopus, and so on. I use the same username with different passwords for each system. MS Authenticator only offers one username/password for those sites unless I open the full password manager and search for the one I need. Until that's improved, I'm switching to Bitwarden.
@@fescen9 Sure. Bitwarden is the solution for you. Microsoft Authenticator's password manager is still a version 1.0 product. Hopefully it will get some improvements going forward. Still, it may never be the right solution for users with more advanced needs.
Bitwarden!
You said that Bitwarden doesn't have any fingerprint authentication or facial identification features, but I got It. I think they have released an update.
The Bitwarden app does support biometrics on Android... It's under Settings->Security/Unlock with Biometrics. The app was last updated was Jan 21, 2021 so you must have just overlooked it.
I can also confirm this and it works flawlessly
Yeah, just jumped ship off LastPass and quickly found the option to unlock with fingerprint. Only thing I'm curious about is the advantage of using that TOTP vs what I just switched to, Google Authentication for 2FA side of things.
Thanks for the heads-up @Fescen9 That's great! I'll update the video description to make it clear that was my bad.
@@TheOrbins Shame it's not enabled by default but it also works fine for me too.
@@Sryously You can secure your Bitwarden password vault with 2FA using apps like Google Authenticator and Microsoft Authenticator. It helps protect your Bitwarden master password. Bitwarden also has a built in TOTP generator but it requires a Families, Teams, or Enterprise subscription. Although the TOTP storage feature is available to everyone. If you used a security key, like Yubikey, to secure Bitwarden, then I guess in principle a separate TOTP app like Microsoft Authenticator wouldn't be necessary.
Check out my latest video on moving from LastPass to Bitwarden where I show you how to export and import your passwords in 2 easy steps 🎬 ruclips.net/video/RB3exDydjiM/видео.html 🎬
I can use my fingerprint on android. It is why I have gone with it. Samsung A5 2017
Yes, I also found the setting. It's not enabled by default like LikePass.
@@RussellSmith It would be in the best interest of this video to add a note to the part of the video where you talk about not being able to use biometrics on Android.
@@TomZ23 I've added a note in the video description. It's not possible to change videos on RUclips once they've been uploaded.
@@RussellSmith its perfectly fine. You may want to put a short video with a link to this video saying Android can support biometric login
@@electrology I will certainly mention it when I record a video on Bitwarden in the future, for sure.
You can use biometric fine using Samsung Galaxy with bit warden.
Yes, it should. Biometric unlocking just isn't enabled by default I discovered.
About the comment on 3:50, I've just changed to bitwarden on android, I can use my fingerprint there to unlock the bitwarden apps
Yes, I found it. The setting isn't enabled by default for some reason.
@@RussellSmith Yes, Bitwarden made a mistake by not having biometric identification enabled by default, hopefully they will correct it in future updates. I think that this is an option that many users may overlook in the settings, so it would be better as as an option activated by default to opt-out of rather than one you have to search for to be able to opt-in.
@@m00njaguar Yes, I agree completely.
Thanks for the video. I have a question if you dont mind, what do you do on your desktop with bitwarden? i really dont want to try my master password each time i close chrome/firefox, you mention it doesnt work with metics on your andriod, that you had to type it, but what about the destkop, is there a way not to type it each time i close and open a browser?
Glad you liked it! On your PC, install the Bitwarden app from the Microsoft Store. The app gives you the ability to set the vault timeout, which is 'never' by default. But you can set a value, like 30 mins, or an action, like 'on system lock'.
Additionally, you can unlock the vault using a PIN, which is simpler than your master password. And the app integrates with Windows Hello, for biometric unlocking on Windows.
The Android app does support unlocking the vault with biometrics. It just isn't enabled by default. You need to go to settings and enable it.
@@RussellSmith Thank you very much for your replay. Because of your post, I manage also to search for that option on the Chrome/Firefox app, its very simple, on the app, under settings > security > vault timeout > NEVER does the trick. Now im really ready to leave LastPass, thanks again.
@@Pabula Great! 😊
On the Bitwarden website and videos, it does say you can use biometrics to open Bitwarden on android devices. Am I missing something as you mention that it doesn't work for androids at 3.40? Edit. ok, I saw the comments and the updated note in the description, but it would have put me off if I didn't cruise the comments or full description for this info.
It does work. It was my mistake. You have to enable it in Settings. Unlike LastPass, biometric unlock isn't enabled by default.
I am struggling with whether I should stay or go as I do not use LastPass on my phone. I am not happy with what they are doing, but I have noticed that in Brave the app for the desktop does not launch the site as I have seen in Chrome. Is this normal? Not sure.
If the changes don't affect you, maybe you should stay put? LastPass is still a good product. I've never used Brave so I can't help you with that question unfortunately. Email LastPass support while you still have the chance as a free user 😉
At least the host is honest with your question. I respect that in a good youtuber. Many are biased amd partial due to ads and affiliates. Hes pretty forward and not biased. I don't care about the little $35 for what it gives. I pay and if your account is ever compromised, you can set parameters to have a close family or friend with premium get your account back. No others do that. To me, its 100% not worth me moving.
If you can’t afford $2-3 per month to keep your passwords secure, then you are not serious about privacy.
That's a perfectly valid option too. The problem for LastPass is that there are free solutions that do the job just as well. And sometimes, even better.
If you are not seeking for alternatives which allow you to access to similar useful features for free then you don't know business.
@@kasadam85 IF you need to spend time to save $2 per month, who is it that doesn't know business?
@@RussellSmith But you'll (not you but in general) pay $5 for a latte at Starbuck's without hesitation. And there is nothing free that comes close to Lastpass Premium. Be honest.
@@91326 I'm not saying you shouldn't pay for LastPass. That's fine and worth it if you need the premium features. But there are options for those who don't want to pay. Bitwarden also has a paid option for enterprise-level features.
Is there an audio sync issue?
Yes. My main camera was in service so I had to film this on my webcam, hence the terrible quality. And for some reason, there was an issue with the sound as well.
I really appreciate the tip about MS Authenticator. I need to look into that, but it looks very interesting as a starting point.
I'm glad you found it useful! I'll be covering more on MS Authenticator on the channel in the future.
I'm switching from LastPass to Bitwarden, thanks.
👍
I finally pulled the pug on LastPass after some 10 years of being a paid customer. Switched to Bitwarden and hoping for the best.
Good luck!
tHANX FOR THE VIDEO. VERY USEFUL.
Glad you liked it!
Hello, great video. So took your advice and deleted my account with LP and installed the free Bitwarden. So far I am liking it, however, two minor things 1) If I already have a password in Bitwarden vault and I launch the website I have to either go to the browser extension and select the account or right-click on the password field, then click on Bitwarden to fill in password ...... is there a way to do one click to fill a password either with the free account or the paid account? I don't mind paying as it's affordable. 2) This one bugs me, when I change any password, Bitwarden does not update the new password automatically, I have to add it manually in Bitwarden. If I am adding a new password for the first time it works perfectly fine but when I am changing a password I have to do it manually. If that's the way it works, could you recommend another password manager? Please don't say LP, I am so unhappy with them...... I will never go back to LP, what they are saying to free users is, on March 16th we are calling the new free service, FREE but we know most likely most people wouldn't be able to use and have to pay but we will still call it a free account. I don't know who LP thinks they are. I prefer to pay for another password manager than go back to LP.
Repeating this reply here for those who didn't see it on the other video:
Glad you liked the video. I can't say anything about the Bitwarden browser extension. I never used the LastPass browser extension and I'm not planning to use the Bitwarden one either.
So, I can't tell you how it works or whether it has the functionality that you are looking for.
But Microsoft Authenticator password manager/autofill will automatically update your passwords. You need an extension if using Chrome or otherwise the functionality is built right into Edge.
Bitwaden is GREAT. I just uninstalled LastPass...
Glad to hear it!
(Update: RESOLVED this issue) I've been paying for LastPass for years. On my mom's account she switched her phone number, so before it logged out and locked her out, I changed her email address and phone number. It logged me out and asked me to log back in. When I went to log in, it said "Send SMS" code to login. I clicked the button, nothing happened. It never asked me to setup 2FA, and I have access to the email and phone number. However, as I stated, clicking "Send SMS" doesn't do anything. I contacted customer support, they said "too bad, we don't care. We can delete the account if you want." Therefore, a bug in their system, locked me out of Lastpass and they won't fix it and don't care. I'll be moving to another service because I have the access to the email address, the master password and access to the phone number, and told them the date I created the account and everything else, and they still can't help me.(Update: RESOLVED this issue)
Strange. They must have a process for granting assess to accounts protected by 2FA when the second factor is lost or not working. If not, that's a serious oversight.
@@RussellSmith I know right? How can I have the login email and password, the phone linked to the account and access to the email address, and not be able to login to my moms account? That makes no sense to me.
@@RussellSmith Here is what Santiago from LastPass said:
"At this moment, I'm afraid that if the recovery options are not set up in the account the only way for you to gain access to your account is by resetting the account." resetting means, they erase everything, but you keep your login email address and maybe the password. How is that any different than deleting the account and creating a new account with the same email address? It is no different. How can they think that is a solution anyone would choose?
@@RussellSmith Needless to say, I'm pissed off. A bug on their end, locked me out. That isn't a feature I'm comfortable in trusting anymore. I've exported my list and imported into BitWarden, but my mom's account is forever lost. I should make a youtube video showing the entire issue.
@@FusionDeveloper When you enable 2FA on a Microsoft Account, you are forced to provide recovery options. Strange LastPass doesn't enforce this by default.
I am still able to use lastpass on Desktop and Mobile free tier account..
You’re lucky 😊
LastPass employees can see every website URL you saved a password for in plain text.
So if you save a password for something like "I have a personal embarrassing private medical condition", everyone at LastPass can see it.
Let this be a warning if you also save a password for a website you shouldn't be visiting or what bank you use.
Some LastPass features rely on metadata being unencrypted. But I take your point.
Information about biometrics is not correct.
Yes, it's not enabled by default. Check out my latest video for an update on that ruclips.net/video/RB3exDydjiM/видео.html
Your pronunciation is accurate... LostPOS.
😅
Im on the fence between Bitwarden and 1Password.
1Password is also a good option. Pricing being the main difference.
@@RussellSmith I actually chose Bitwarden.. I really like it and it's free... win win!
Switched to bitwarden from lastpass.
Hope it went smoothly!
CAREFUL: Microsoft Authenticator doesn't have export option! If they played it shady, you have to pay.
no other option.
I suggest bitwarden all the way.
It does. You export your passwords using Microsoft Edge as I explain in the video.
Pretty good video describing the Lastpass controversy. But I disagree with your recommendation of using MS Authenticator for storing passwords. There are a number of reasons against recommending the use of MS Authenticator for storing passwords, but imo the one major strike against MS Authenticator is its lack of end-to-end encryption. In light of these world-wide security breaches happening at every major corporation, E2EE is an absolute requirement these days!!! Both Lastpass and Bitwarden operate on the premise of encrypting everything client-side (locally on your device) using common javascript crypto libraries BEFORE uploading only ENCRYPTED data to the cloud for backup & storage. Bitwarden/Lastpass are never sent the raw encryption keys (based on your password) to decrypt the data they are hosting. So if/when these companies are breached and their DB's are exfiltrated, hackers only get blobs of encrypted data. And no, Lastpass/Bitwarden don't know your password. I know it sounds illogical since you had to create an acct & password to sign up, but it's true. They don't know your password... it's a too long conversation beyond the scope to explain how this is possible, but it involves cryptographic client-side hashing of your password.
Anyway, Microsoft Authenticator is NOT end-to-end encrypted. Meaning Microsoft retains the encryption keys used to protect your password vault. Oh sure, all your passwords are certainly encrypted on a MS SQL Server back in MS's datacenter. But that data is encrypted with an encryption key KNOWN TO MICROSOFT... meaning somewhere on MS's networks are the keys to the kingdom... meaning theoretically accessible to network intruders. Bitwarden/Lastpass don't have this problem b/c they simply don't have your encryption keys and therefore can't leak them to hackers.
I agree that use of end-to-end encryption is usually preferable. But for many users who allow their browser to 'remember' passwords, it's probably just academic? At least in Edge, if you are signed in to the browser, any passwords that get 'remembered' are synchronized to the cloud. Although I'm not sure whether password sync in Edge is enabled by default.
@@RussellSmith I suppose it is "academic" for "most" people, but that's just another way of saying those people are oblivious & just don't care. But being oblivious doesn't keep you safe... and when that data is literally the passwords to your Bank, the IRS, your 401k fund... knowing how your data is protected, or not protected in the case of built-in browser PW managers, is critically important.
I'd venture the same people who will blindly use MS Authenticator & Edge to store their passwords are the same ones clueless to the fact Microsoft was also breached during the massive SolarWinds attack and had source code to Windows exfiltrated from the company's network. If they can steal Win10 source code, they sure as heck can steal databases containing all your passwords along with the encryption keys MS used to encrypt that DB.
@@EricS-uf9mv I'm not sure that it's they don't care. They just don't know. LastPass has also had its security issues. There's no such thing as 100% secure. It's always a question of assessing the risk and then balancing security vs convenience.
@@RussellSmith " LastPass has also had its security issues."
There's a MAJOR difference between implementation/execution mistakes which exist in ALL software and can be identified & fixed Vs. a *fundamental* weakness in the overall security architecture which cannot be fixed. Am I happy with coding oversights? No! But issues can be quietly reported & addressed via a bug bounty program. OTOH, you simply can't fix in inherently insecure security architecture without rebuilding the product from scratch!
Simply put, Bitwarden/Lastpass are E2EE while MS's solution is not. I think i'll leave it there. Ppl have enough info to make a wise or unwise decision. It's up to them. Good day & keep making vids!
@@EricS-uf9mv Thanks for the interesting discussion! I will reach out to Microsoft and try and get a definitive answer about how encryption is deployed in the Authenticator app. If I get an answer, maybe I'll even make a video about it 😉
Microsoft Authenticator is the worst does not sync correctly and randomly delete`s password spent over 2 hours to try and get it to work. I think I will opt for biwarden
That's a shame. I haven't had that experience with it. But I know Microsoft's sync tech hasn't always been the most reliable in its other products.