Password reuse is rampant: nearly half of observed user logins are compromised (blog.cloudflare.com)

submitted 14 hours ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

14 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] lurch@sh.itjust.works 2 points 8 hours ago

How about KeePass then? It's an encrypted local database file you can sync/backup how and where you want. There are clients to open/edit it for Android, Linux and even Windows. The Android version can use fingerprint, if your phone has this hardware.

[-] sugar_in_your_tea@sh.itjust.works 1 points 7 hours ago

My main issue is that it doesn't solve the "borrowing someone's computer" problem. With a hosted password manager, you can login to an online vault to get your passwords, but that's not an option with keepass.

That's a pretty rare use case though, but it is something I run into periodically.

[-] lurch@sh.itjust.works 2 points 39 minutes ago

that's a bit risky. the foreign computer could capture passwords.

however, in that use case, you could either display the password on the phone and manually enter it or use a portable keepass on a usb stick

Linux: How to run: https://docs.appimage.org/introduction/quickstart.html#ref-how-to-run-appimage Download: https://keepassxc.org/download/#linux

Windows only: https://keepass.info/help/v2/setup.html#portable

[-] isaaclw@lemmy.world 1 points 4 hours ago

I use lastpass and have my vault on my phone.

But I have a hard time using someone else's browser these days . .. too many custom plugins.

this post was submitted on 19 Mar 2025

17 points (100.0% liked)

Cybersecurity

6732 readers

231 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !securitynews@infosec.pub !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 2 years ago

MODERATORS

kid@sh.itjust.works

Lanky_Pomegranate530@midwest.social