Nearly every major browser has a built-in password manager. They’re convenient and have so little friction that you wouldn’t even think about them. But I always avoid using my browser’s password manager. Here are five reasons why you should avoid them as well.
1 Not as Secure as Dedicated Password Managers
Storing passwords in your browser, even with all the encryption, is not the best idea. If you, for example, share your device with someone or your device falls into the wrong hands, they can access these credentials. The simple fact is that most browsers don’t have security mechanisms like multi-factor authentication to protect your stored credentials. As long as someone has access to the device, they may be able to see stored credentials.
Additionally, although browsers safely store your credentials, they are more susceptive to malware attacks via JavaScript, according to cybersecurity company Avira. And if you prefer to self-host your passwords, browser-based password managers don’t allow you to do so.
In contrast, standalone password managers offer more security, such as multi-factor authentication and the ability to lock your vault automatically, immediately, or after a certain period. Some also give you the freedom to self-host your credentials (For example, you can self-host your Bitwarden password manager).
2 Don’t Provide Auto-Fill Outside the Browser
Another significant limitation of browser-based password managers is that they don’t work outside the browser. You can only get auto-fill while accessing your favorite services within the browser.
If you need to log in to an app like Instagram or Facebook, you must first access your credentials in your browser and then copy and paste them to the app’s login page. It’s inconvenient.
Even worse, copying your login credentials isn’t a good idea since some apps on your device can access clipboard content. If there’s a malicious app on your device, it might steal your credentials.
To give credit where it’s due, some browsers like Google Chrome and Firefox offer dedicated password management apps to provide auto-fill outside the browser.
3 Can Only Store Passwords
Browser-based password managers limit you to store only passwords, which has been limiting for my use case. In contrast, the best password managers allow you to store any kind of confidential data. I use Bitwarden as my primary password manager because it offers more than just a vault for storing passwords. It allows me to store credit cards and identity details (personal information like your name, address, and more) to quickly fill out online forms.
A password manager like Bitwarden also allows me to store secure notes, which has been handy for storing credentials that aren’t passwords—like API keys, recovery codes, etc. Plus, I can add a custom note (like two-factor authentication recovery codes), attachments, and custom fields for every password saved.
Some browsers allow you to store your address and payment cards. Still, you won’t get the full suite of features that a dedicated password manager provides.
4 Cross-Platform Limitations
Browser password managers tie you to that specific browser. If you switch to a different browser, you must import all your passwords or go through the hassle of copying and pasting.
I use Chrome, Firefox, and Safari, so I can’t use any of them to store my passwords. If I save passwords on one browser, I’ll need to update passwords in all three every time I change a password.
Another limitation is that although you can access your passwords by logging into your account (e.g., Google account for Chrome passwords) on any browser, you’ll lose the convenience of auto-fill. This can make switching browsers challenging
5 Limited Features
Finally, I avoid my browser’s password manager because it has limited features. Whether you use Firefox, Safari, Chrome, or any other browser with a password manager, the available functionality is very limited relative to what you get in standalone password managers.
First, some standalone password managers allow you to share your passwords securely using a built-in sharing feature or by having a shared vault. Since several streaming services still allow password sharing, this is a handy feature. Standalone password managers also have family plans, allowing all members to have private password vaults and shared vaults for family services.
Some password managers like Proton Pass have a built-in email alias feature that allows you to hide your actual email while signing up for online accounts. These are just examples; different password managers have various additional features like an integrated authenticator, customization of generated passwords, and more.
While my favorite browser has a password manager, I don’t use it for the reasons mentioned above. Bitwarden is my preferred password manager, but there are other reliable alternatives that you can use instead of the one in your browser. Most of them are free, so switching shouldn’t be a problem.
