Why do we need password managers anyway?

Surprisingly, a lot of people do ask this simple question. A TechRadar Pro survey carried out in April 2022 found out that more than a quarter of the 1,000 respondents didn't see the point of a password manager with a further 26% preferring to store their passwords elsewhere. That's a lot. And yet, the humble password manager is the best tool to manage our ever increasing number of passwords. Every computer or phone user has hundreds of login and password combinations and attempting to remember all of them is near impossible, especially when for services you registered for a while back and hardly used ever since. Password managers also remove the mental challenge usually associated with creating near-uncrackable passwords by generating and storing them for you. They then simply store these passwords in a "vault" for access using a "master password" - so basically one password to rule them all.

How does a password manager work?

A Password manager is a very simple and easy to use utility that requires minimal user interaction, since most of its actions are automated. They will work across numerous platforms, and they should feature a browser extension for use on desktop computers, as well as an app for smart devices such as your mobile phone. The passwords you use on each platform will synchronize across all the devices you use the password manager with. Once you set up your password manager, you can go ahead and create whatever digital accounts you want. They will usually throw up a prompt to create a strong password for you when doing so - this is the password generation feature of the manager. Once you accept, it will then store the password and username for you in its vault, so when you next go to log in, you should find your credentials already filled out for you. If you ever want to change or update your password for an existing account, you can do this too. Again, a prompt will usually appear from the password manager, confirming whether you want to overwrite the existing password with the new one you have created, ensuring your password manager remains up to date. Some password managers even have a version history, so you can see the previous passwords you have used. As for importing your existing passwords stored on another manager, this should be a fairly straightforward process. Many managers will give you the option to import and export your passwords as a csv file, or any one that can be opened with spreadsheet software like Microsoft Excel or Google Sheets. This allows you to export them out from your old manager and import them into your new one. If you have your passwords stored manually in a spreadsheet, you can also import that into your new manager too, providing you follow the correct formatting for the manager in question.

What are the most secure password managers?

Understandably, this is one of the most important questions to ask of a password manager. You would expect any password manager worth its salt would be secure as a given, but no one is perfect and some have had issues. LastPass, for instance, although a very reputable and popular choice, did suffer a security breach, and although the company reassured users that no passwords were accessible, it is still a cause for concern. The managers offered by big tech companies, mainly Google and Apple, are generally very secure, as you might expect. Not only do they have the pockets deep enough to maintain the best protection possible, it would also be a huge PR disaster should they incur any major breaches, and companies of that size have an awful lot to lose.

How safe are password managers?

All the best password managers are very safe, using the best encryption methods to store your passwords securely. Zero-knowledge architecture is one of the core principles for managers to keep your passwords as safe as possible. This means that no one but the user has access to the passwords contained in the encrypted vault. Even the vendor and providers of the cloud backup service for your passwords are unable to see what your passwords actually are - only you have the power to decrypt your stored passwords, using your master password, or biometric data if you have this set up on supported password managers. Complex algorithms are used to encrypt passwords, and there are different methods. Some managers, such as NordPass, use something called XChaCha20, which is military grade and considered to be at the cutting edge of current encryption technology. It is also favored by big tech companies like Google, and is faster than more traditional methods such as AES-256. Also, NordPass claims that such methods may be crackable with new technologies - for instance, quantum computing could put traditional methods of encryption at risk - but it believes XChaCha20 is resistant to these dangers. All good password managers will also allow for biometric login and feature multi-factor authentication, two aspects which most people will be familiar with by now. The former involves technologies that recognize the physical aspects of the user, such as fingerprint scanners and facial recognition cameras, to authenticate them as the legitimate user. Multi-factor authentication is an added layer of security on top of your password to make sure that it’s actually you who has entered your password on a given site or service, usually by sending a text message code on your phone that you have to input to make sure it is you. There are also separate authenticator apps you can have on your phone that give you a code to authenticate your login instead, if you’d rather not receive an SMS code. And as with any piece of digital tech, how it is used by an individual or business goes a long way in determining how secure it remains. At the very least, make sure you are accessing your manager on a secure and protected network - always be cautious when using them in spaces with public wifi - and make sure you're using the best malware removal tools and the best antivirus software for your system. Smartphones are generally very secure in this regard, although you should always be careful when downloading apps to make sure they are trustworthy - the Google Play store, for instance, has had its fair share of malicious apps doing the rounds recently. Also, if you are using a master password to secure your password vault, then make sure it is a strong one. This will be one that you will have to remember yourself, so a long and complex string of various random characters will probably be out of the question. Current expert advice suggests that for passwords you choose yourself, a string of three random words together is quite strong, as it will be hard to guess and easy to remember for yourself. Whatever you use, just make sure to avoid ones that are easy to crack, like your mother’s maiden name, your birthday, or ‘password1234’.

Can a password manager be hacked?

In a word: yes - in the sense that virtually any computer system can be hacked in theory. But the password managers in our list have a great safety record and utilize industry-standard encryption methods to protect your most valuable of assets. If we ever catch wind of any compromises to their security posture, we’ll be sure to let you know straight away. Of course, many of you will probably be aware by now of the breach suffered by LastPass , one of the most popular password managers around, where users’ password vaults were stolen. The company did assure them that they remained encrypted, so unless the hackers also guessed their master passwords too, they should remain safe. However, other personal data that were stolen, including names, payment information and the addresses of their IP, email and physical location, were not encrypted. For these reasons, LastPass no longer makes it onto our list of the best password managers. Speaking of encryption, all good managers will use the strongest methods available when storing user passwords in their databases, which are extremely difficult to crack without the digital keys needed to unlock them. So the question then becomes can a hacker obtain these keys? In the case of LastPass, its subsidiary, GoTo, recently announced the encryption keys for its users’ accounts were stolen in the same attack that affected the password manager, but it is yet to confirm whether the same is true for its service. LastPass isn’t the only password manager to succumb to a breach, however. Many Norton LifeLock users recently had their accounts hacked via a credential stuffing attack, with the company warning them that unwarranted access to their suite’s password manager may be possible. Passwordstate also saw its users fall victim to a devious fake software update that stole their stored passwords. Unsurprisingly, none of these password managers made it onto our list.

Should you use your browser to manage your passwords?

It of course makes sense from a convenience perspective to use your browser’s integrated password manager, such as that in Google Chrome. And although it is a perfectly solid choice, there are various reasons why you may want a dedicated password manager instead or in addition to your browser’s. Firstly, your browser’s password manager will likely not work with other devices quite so easily. If you use Google Chrome on a desktop and have an iPhone, then passwords associated with apps will not be saved to the manager in Chrome - by default they will be saved to Apple’s own password manager, Keychain. Keychain and Chrome password managers will not sync together, and there is no browser extension for Keychain that will work on Chrome. Therefore, you will be running two managers concurrently, one used for mobile app passwords, and the other for website passwords. If you have an account for a service that has both a website and an app, then they will be saved to both managers separately. As you can imagine, things can start to get messy and disorganized fast. The solution would be to have a dedicated, third-party manager like those on this list, so they can centralize and sync all your passwords for both websites and apps across all your devices. They will usually have an app for mobile and for desktop, as well as an integrated extension compatible with most common web browsers, so no matter what platform you’re on, you’ll always have access to your passwords. Secondly, dedicated password managers often come with a lot more useful extras. For instance, a small but useful feature of many password managers is the ability to give a nickname to your account passwords, so you can locate them easily. Sometimes, you will find that searching for your account credentials by username or by the URL that the account is stored on may not yield the results you're looking for.

Where to find the password manager on Chrome

Google Chrome is the most popular web browser in the world right now , so there’s a good chance you're using its integrated password manager already. On desktop platforms, you’ll find it under settings - autofill - password manager. You can see all your passwords here, and search for them via their username or the web page they are used on. It will also show you any passwords that have been compromised, based on known data breaches and leaks. There is also the Google Password manager, which is the official password manager for Android, and has now taken over the integrated manager in Chrome as well . This means it now stores passwords you use on Android apps as well, not just website passwords.

Do password managers work with apps?

All the best password managers will have an app associated with them, and will work on both Android and Apple iOS devices. This means that passwords you use for other apps will be able to be stored in your password manager and easily accessible on your device, allowing for instant login. They will be cross-platform, so can be used across all your different devices, as well as having an extension you can download to allow them to work in popular browsers, such as Google Chrome and Apple's Safari. However, as many smart devices now have biometric login capabilities, such as using fingerprint scanners and facial recognition, a lot of apps will simply require this to log in instead, without the need to input a password every time. This biometric data is stored on the device itself, such as your iPhone or Android phone, so a password manager isn’t used in these cases. However, many password managers now support biometric data too, so you can save it to the manager as well.

Best password manager of 2023

PRICE

VERDICT

REASONS TO BUY

REASONS TO AVOID

VERDICT

REASONS TO BUY

REASONS TO AVOID

Jump to:

Quick List
Best overall
Best for security
Best for free
Best for mid-sized business
Best passwordless
Best for enterprise
Best for families
Best for small business
Best for mobile
Best for Apple
How we test
How we choose
Password manager FAQs

best password manager: quick menu

password manager security — (Image credit: Passwork)

The list in brief
Best overall
Best for security
Best for free
Best for mid-sized business
Best passwordless
Best for enterprise
Best for families
Best for small business
Best for mobile
Best for Apple users
How we test
How we choose
Password manager FAQs

Password managers are the ideal solution for virtually anyone today who has a digital life of some kind, as they can store all the various secrets and credentials needed for the myriad of accounts we all have. They are not just a tool of convenience, though - they also play a vital role in improving user productivity and, perhaps most importantly, security.

You can of course use the proprietary password managers that are often integrated with popular browsers and mobile operating systems, but using a third-party manager allows you to store, access, and autofill your passwords across all manner of platforms and devices, without being tied to a single ecosystem.

Password managers can also shoulder the burden of creating strong and unique passwords for every account you have, saving you the trouble of having to do so yourself, which almost inevitably leads to bad password practices, as strength is often sacrificed for easy-to-remember phrases.

In this round up, then, we’ve selected the very best password manager solutions for every kind of user out there, depending on their needs. We’ve personally tested nearly 30 of them, so you can be sure we’ve uncovered the best the industry has to offer.

In our comprehensive review process, we took into account all the important aspects that the best password managers need to score highly on, which includes their ease of use, security, compatibility, device limits, storage capacity - and, of course, value for money.

Quick List

Best overall

1. NordPass

Best password manager overall

This feature-packed password manager has just about everything you could hope for, and is great for all users - individual, business, enterprise. The free tier is lacking somewhat, but the prices for the premium plans represent good value considering what you get.

Read more below

Best for security

2. Dashlane

Best password manager for security

Another popular and well-loved password manager, Dashlane is keen to pitch its strong security credentials as a leading feature. While all the managers here have a good reputation in this regard, Dashlane also prides itself on its easy to use interface, so it isn't a chore to navigate.

Read more below

Best for free

3. Bitwarden

Best free password manager

Bitwarden’s free tier alone should cater to most users’ needs. Unless you’re a serious power user who requires some very advanced features, it is more than capable of storing all your passwords securely across all your devices - all without paying a penny.

Read more below

Best for mid-size

4. Keeper

Best password manager for mid-sized business

A great choice for medium-sized businesses, Keeper has some features that admins would love, including a policy engine and organizational structures. Prices can escalate quickly with add-ons though.

Read more below

Best passwordless

5. LogMeOnce

Best passwordless password manager

One of the notable features of this manager is the option to log in without a master password - you can use your fingerprint, a QR code or even a selfie instead. The overall package from LogMeOnce isn’t bad either, making it a strong contender.

Read more below

Best for enterprise

6. N-Able Passportal

Best password manager for enterprise

There’s no out-of-the-box plan with N-able Passportal - this manager is a bona-fide enterprise offering, tailored to your needs based on consultation. Despite its advanced features, we found its user interface intuitive.

Read more below

Load the next 4 products ↓

Best for familes

7. 1Password

Best password manager for families

1Password works well for families and businesses, with its sharing functionalities and some great security features that protect users from phishing and keylogging attacks… just don’t forget your master password!

Read more below

Best for small business

8. KeepSolid Passwarden

Best password manager for small business

As the name suggests, this is a solid password manager, but the price is high for what you get, and the lack of admin features makes this suitable only for small businesses. Individuals may look elsewhere.

Read more below

Best for mobile

9. RoboForm

Best password manager for mobile

RoboForm works great on mobile (both Android and iPhone), and the free version includes cloud syncing, which is a nice bone to be thrown. Multi-device syncing is for paid users only, though, but prices are good.

Read more below

Best for Apple users

10. mSecure

Best password manager for Apple users

A boon for Apple users, this password manager can integrate with iCloud and even has an app for Apple watch. Its sleek interface is right at home on the Cupertino giant’s pristine devices too.

Read more below

The best password managers of 2023 in full:

Why you can trust TechRadar We spend hours testing every product or service we review, so you can be sure you’re buying the best. Find out more about how we test.

Best password manager overall

Website screenshot for NordPass on a Windows laptop — (Image credit: Future)

1. NordPass

Best password manager overall

Specifications

Free tier: Yes

Device limit: 6

Supported platforms: Windows, macOS, Linux, Android, iOS

Browser extensions: Chrome, Edge, Firefox, Safari, Opera, Brave

Reasons to buy

Import from all browsers

Plentiful feature set for premium tiers

Reasons to avoid

Limited free tier

No phone or forum support

Subscribe if:

✅ You want an easy to use but feature-rich manager: There’s very little NordPass can’t do for your passwords and secrets, and most can reap the benefits it has to offer, all the way from individuals up to power-using organizations.

✅ You want it on every platform: With apps for Windows, Mac, Linux, iOS and Android, as well as browser extensions for Chrome, Firefox, Edge, Opera, Brave, and Safari, NordPass can be used on anything you use.

Don't Subscribe if:

❌ You won’t use it much: NordPass might be overkill for you if you're a casual single user, as you might not make full use of its many additional features.

The bottom line

🔒 NordPass will be a great password manager option for many people, families, and organizations, thanks to its array of advanced features and professional interface. It might be a bit too much for the needs of some, though. ★★★★½

We were already very familiar with NordVPN, one of the best VPN services around, and this is the password manager from the same company behind it, NordSec. This versatile client is on every platform we could hope for: there are browser extensions for Chrome, Firefox, Edge, Opera, Brave, and Safari; desktop applications for Windows, Mac and Linux; and mobile apps for iOS and Android devices. We could also simply access our password vault directly via its website too.

The free tier of NordPass offers unlimited storage space for passwords, which isn’t the case for every password manager we tested. And while we could sync our passwords with other devices on this tier, we couldn't stay logged in on more than one device at a time. The premium version, however, allows us to log into six.

Also, the free version will not detect weak or reused passwords, nor will it notify users of any data breaches affecting their accounts. There is a free 30-day trial for the premium version, though.

Another negative was the lack phone support or even a forum where users could share their problems and solutions, although there is 24/7 email support and the online help center is well laid out, so you should be able to solve basic issues quite quickly.

We also noticed that updates were frequent, with new features being added on the regular. Not long ago, for example, the desktop version gained the ability to