Despite the privacy issue being google and all that, chrome has done more for security, standards and a overall better web then any other web browser.

Andrew129260 said:

Despite the privacy issue being google and all that, chrome has done more for security, standards and a overall better web then any other web browser.

rAmen to that!

This will be only a temporary complication. People should never ever store passwords in the browser.

TairikuOkami said:

This will be only a temporary complication. People should never ever store passwords in the browser.

Agree - always use a decent password manager for those.

TairikuOkami said:

This will be only a temporary complication. People should never ever store passwords in the browser.

Golden said:

Agree - always use a decent password manager for those.

Any reason for that? While password managers are usually more secure, I don't see much danger in using the browser. I always found firefox and chrome's password managers to be pretty secure. This site seems to steal them from browsers that are on systems with no password or an infected pc. So long as the device itself is secured. The system password is required to view them. Almost all sites that allow saved passwords to be used also require manual entry when trying to change anything in their account settings. So even if someone using your saved password to log into one of your sites, when they go to account settings there isn't much they can do when its requested again. Unless they start really trying to crack it, in which case if you're this targeted no security will save you anyway.

You can also provide your own master password to use instead of the default 256 bit google credentials encryption that the browser uses. I recommend that option more.

HRPuffnstuff said:

Chrome is my goto browser now, sorry ff, but I still wish that it had standard windows drop down menus.

My biggest problem with firefox is its mobile app is awful. Downright terrible. The addons are a nice touch though.

Andrew129260 said:

Any reason for that? While password managers are usually more secure, I don't see much danger in using the browser. I always found firefox and chrome's password managers to be pretty secure.

There are so many browser vulnerabilities abusing the inbuilt password managers, that people do not even bother reporting them anymore, they just get fixed on the go. Password managers with auto-fill enabled can be also exploited, but they are usually more secured and typically require user's interaction.

Andrew129260 said:

So long as the device itself is secured.

Well, browser extensions can easily harvest passwords/hashes, even ads will do (scripts, hidden iframes).
Browser-based password managers are being exploited by advertisers – BGR

I use offline Keepass for important passwords and online Bitwarden for the rest.

TairikuOkami said:

There are so many browser vulnerabilities abusing the inbuilt password managers, that people do not even bother reporting them anymore, they just get fixed on the go. Password managers with auto-fill enabled can be also exploited, but they are usually more secured and typically require user's interaction.

Well, browser extensions can easily harvest passwords/hashes, even ads will do (scripts, hidden iframes).
Browser-based password managers are being exploited by advertisers – BGR

I use offline Keepass for important passwords and online Bitwarden for the rest.

hmm, i wonder if this is why google moved the browser autofill to gboard instead of within the browser on android. Recent change I noticed. And yes browser extensions could definitely cause issues. Makes sense.

I don't save any important passwords, I just remember them. All the ones I save are forums and convenience stuff that wouldn't matter if it was compromised.

Getting people to use a password manager has proven difficult for me, so I just have them use chrome's password manager with two factor enabled on their google account and hope it's enough. At least chrome is pretty fast at resolving vulnerabilities.