Researchers at the University of California, Berkeley tested several popular web-based password managers and found serious vulnerabilities.

Although it’s a good idea to use password management software, any web-based service is going to be a tempting target for nefarious persons, since discovering one password will typically open a treasure trove of additional passwords.

We recommend using an offline password manager like Bruce Schneier’s Password Safe or Password Corral.