Many people find it convenient to store passwords in note-taking apps like Evernote or Apple Notes, but this practice can be a security risk. Let’s take a look at why note-taking apps are high-risk places to store sensitive data—and the best ways to store your passwords.
Why is storing passwords in a notes app a bad idea?
Many people write down passwords in plain text—on sticky notes or in smartphone apps—for convenience. In fact, about a quarter of us store passwords in digital notes or documents, according to data from the Pew Research Center.
Unfortunately, that convenience comes with serious security risks, as the primary purpose of note-taking apps is not to protect sensitive information, leading to a number of cybersecurity vulnerabilities. The biggest of these is the fact that most common note-taking apps are not automatically encrypted.
The lack of encryption leaves you at the mercy of your device’s security. If your phone or laptop is lost or stolen (or simply unlocked in the wrong hands), all of your passwords are instantly exposed.
While you can lock your entire phone with a passcode or biometric lock, if your notes are synced to the cloud and someone gains access to your cloud account by breaching the provider's security or defenses, they can completely bypass the device's security. If that sounds impossible, consider that Evernote, for example, once had to reset 50 million user passwords after its database was breached.
Even "encrypted" notes aren't secure enough
While some note-taking apps offer encryption, it's typically not as strong as what's found in password managers. For example, Apple's Notes app allows you to lock notes with a passphrase, using end-to-end encryption with AES-GCM.
Not all note-taking apps offer this level of security, however. Evernote’s encryption, for example, is more limited: It allows you to encrypt text in your notes using AES-128, but this requires you to do it manually for each sensitive piece of text. More importantly, Evernote’s standard storage isn’t end-to-end encrypted by default, so the company theoretically has access to your data on its servers. Certainly not the best way to store passwords.
In addition to weak encryption, note-taking apps lack many essential password management features. For example, they lack secure password sharing; automatic password generation to create strong, unique passwords that match a site’s specific requirements; and they don’t provide breach monitoring alerts to notify users when their stored credentials appear in known data breaches.
Last but not least, they can't autofill login forms on websites, so you have to manually copy your password to the clipboard, and there are quite a few types of malware designed to monitor and steal clipboard contents.
Secure Alternative: Password Manager
At this point, you might be thinking, “Okay, if I don’t have to use my note-taking app, what’s the best way to store my passwords ?” The answer is to turn to a password manager. Password managers are apps specifically designed to securely store your passwords (and other private information). They encrypt everything with a master password (or passphrase) that only you know, and come with convenient features like autofill, strong password generators, and sync across multiple devices.
Here are some of the top password managers that the article recommends, based on different needs and personal experience using them.
With iCloud Photos, you can view your entire photo library from any device. But you need to download photos from iCloud if you want to edit or do anything else. There are several ways to download photos from iCloud to devices like iPhone, Mac, and even Windows PC.
iPhone lists the full battery usage of applications, helping you know which applications use a lot of battery on your iPhone.
How to calculate the diagonal of a rhombus? Please find the calculation method and examples below to understand the formula for calculating the diagonal of a rhombus.
Kill Monsters to Save Princess, one of the longest named games in Roblox or shortened to Save Your Princess.
The latest Go Back to the West code will come with attractive items for you to exchange for rewards.
Download Blockman Go on PC to entertain you when your phone capacity is limited and the battery is low while playing.
Your PC ran into a problem and needs to restart and won't start? Here's how to fix it!
Even though the product has only been released for a short time, Nvidia RTX 5080 and RTX 5090 graphics card owners are complaining about a series of problems.
As a long-term support release, Ubuntu 20.04 LTS (Long-Term Support) will be supported with continuous updates for a total of 5 years, meaning it will reach end-of-life around April 2025.
Meow: Sen Oi Dung So gives gamers a series of codes with events for players to participate and receive rewards.
Code Super Snail gives players a series of attractive rewards, we still recommend players to receive rewards from the beginning of the game to make the time when starting the game easier.
Generative Workspace is one of the top AI features announced at Adobe Max 2024. It will be the new home for your Generative AI images and files.
In fact, many people have thought that wifi password is a math problem with a series of formulas that take up several pages of paper and if you are blind in math, then forget it, you will definitely not be able to use wifi.
Insect eggs come in different shapes and colors. You can find brown insect eggs and more.
The winter solstice — the day marking the beginning of winter — occurs on the shortest day and longest night of the year. Here are some interesting facts about the winter solstice that you may not know.
