You don't need passwords if you don't make accounts with organizations. The fewer account you have, the less likely you are to get hacked. Don't store information with retail sites, always choose to shop and check out as a "guest" when possible,
Amazing tip, Clarkie! 🙌 Many of the accounts are marketed as earning rewards & discounts, so people will have to decide what's most important to them - rewards/discounts vs privacy. 💚
What, no mention of Yubikey (a physical key) or Bitwarden? Hard to find this credible with not a single reference to either of these two important ones. Also, it was like watching an infomercial for Apple. Wow, Clark.
Clark, there is no one, and I mean no one is better suited to be interviewed than an actual computer programmer who has been educating people all his life. Steve Gibson from grc.
I was worried Kim might fall asleep during that extra-long intro, Clark! 😊 Seriously though, I love your content across all formats and Kim is awesome. Great to see her here.
Great show Clark the passkey explanation was very brief, an she did not mention all the companies banks etc that do not support passkeys, dah it' will still be a while before passkeys are totally enhanced.
I turned it off when she said free products have security issues. Not true and the best password manager available today has a free version. Also, most Linux software is free and more secure than anything you use on other OS’s.
I’m coming around to using a password manager. Have to do more research..I use both Apple and Chromebook. I’d like a manager that I can access from both
Years ago, I sent an email to customer service at proton and they said that unless the recipient that you are corresponding with is also using proton, then your email is not encrypted
It's all just way too complicated for me. I'm lost. I can't grasp it all. I feel like a sitting duck unable to protect myself from this digital world. Vanguard says my voice recognition is secure, but now I hear that it's not. I don't know what to do and if I did I wouldn't know how to do it. I recently learned that a picture of my face is as good as my real-time face so biometrics is no good either. I feel like cashing out all my money and hiding it under my bed would be the safest way to go.
Then you'll have the threat of a fire or a burglary. 🤷♂ No 1 method is 100% secure, so layering a couple of methods is key, as well as, keeping up with all of the changes. What worked at one time may not be the best right now because criminals cracked that code. As criminals become more advanced, we have to use something new to protect ourselves (i.e. now they know how to clone our voices). It's frustrating and unfortunate. 💚
The free rule is a good general principle but there are exceptions Like bitwarden. Bitwarden is completely open source that means If BW goes off the rails someone can just take the code and fork it make a new product based on that code. I am sure people are wondering how BW. makes money it has a few extra features fir a consumer it's like $10 a year and many people just buy it to support the developer team. Oh, and passkeys will not be replacing the password anytime soon and managers can store your passkeys so you're not locked into one product like apple for everything.
BS. FOSS is free but usually safer than paid proprietary software. KeepassXC is free, FOSS, and can be used offline. Syncing is what's bad. Anything that syncs is likely stored outside your control.
iOS has had a built in password manager for a long time. iOS 18 is just an evolution into it being a separate app. It was already saving passwords with biometrics ages ago. I love Clark but this feels like my parents repeating what they heard from a “genius” at the Apple Store and getting it mostly wrong lol
There is more to it than just being a separate app. There is a huge security flaw in Keychain in that it was unlocked and passwords could be accessed with your iPhone passcode, so anyone could access all your passwords simple by unlocking your phone. The new Apple password app has a separate password from your passcode making it more secure and similar to third part password managers.
What about the safety and hack ability of Google's password manager or Any browser password manager. Since you featured this in the title of your video, I was hoping there was going to be a more focused discussion other than just not to use a free password manager. Bummer!.
For security, what about a hard physical key like Yubikey for ultimate security protection? Is this still the way to go even though it's not accepted everywhere?
Funny she said only use a paid version of a password manager. Lastpass got hacked and lost customer's encrypted vaults and it was a paid service. Keepass is open source, has never been breached and you store your own database file on your own machine or in the cloud. Add to that a complex password/phrase and a key file on you own USB drive and you're good to go.
If you’re not in IT or otherwise not good on computers, KK can be a decent source of information. If you know what you’re doing then you think she’s mostly full of it. 😂
I agree. Many computer experts recommend using the OS's built-in virus scanner, as it's sufficient for most users. Also, Bitwarden is an excellent password manager. These options challenge her assertion that 'cheap' always means 'no good.' Being able to spot exceptions to rule is what distinguishes average advice from the best advice.
Let’s have the two least tech savvy people on the internet tell us about password managers. I love Clark for money advice but he’s no techie! Kim on the other hand is like that grandma who tries to understand tech but just can’t grasp it 😂
No, unless you like all your passwords accessed by simply unlocking your iPhone, or your Mac screen lock password. A third party password manager, or the new Apple password app, require their own separate master password to access your passwords.
Am I the only one wondering why Google Chrome's free password manager wasn't mentioned? It generates strong passwords and syncs them across your devices. What's not to like?
I don't understand why hardware solutions like Yubikey wasn't mentioned. They are relatively inexpensive, easy to use and very secure, as long as you don't loan anyone your key. I've used one for over a year without an issue.
Good point! Maybe we can ask Kim next time. Clark has mentioned hardware solutions like Yubikey on the show before, but we will consider researching and revisiting it. Thanks for putting it back on our radar! 💚
@@KLondike5 They don't "keep having" security failures. So far, one has been found that requires that the thief have physical access to your device for a period of time. Even then, it's a difficult fault to exploit. Hence my statement above "as long as you don't loan anyone your key." I protect my keys like I would cash. One on me, one in my desktop, which gets locked up in a safe when not being used, and one kept in a safe at my business.
PW managers are a necessity in 2024. In order to achieve enough entropy with passwords, the complexity is beyond what the human mind can remember for even one website or account. There are a half dozen good pw managers that are either free or nearly free that work satisfactorily.
LOVE Kim but there is NEVER One single solution. Using Biometrics is NOT the answer because Biometrics is NOT PROTECTED according the the US Supreme Court.
BUT ISNT AI ALREADY ABLE TO FAKE FACES? OR DOESNT PERSONAL AUTHENTICATION OPTIONS FOR FACE AND FINGERPRINT MAKE THE CRIMINAL just need to hold gun to us or knock us out to use our fingerprint or face to get in??
Unconventional user names, almost like a 2nd password ,, not an email address, Weird passwords with multiple words, capitals, numbers, 2 symbols 2 factor authentication on all financial accounts, Don’t store info on shopping websites Don’t respond to unsolicited emails, texts, phone calls What else ?.
I do not trust any password keeper nor biometric passwords. I have a password for all my accounts and each one is very different. Moreover, I never use any apps on my cellphone nor any public computers. Since my passwords are complicated I write them down in a little notebook which never leaves my huge gun safe. I also refuse to do online banking. If my phone gets lost or stolen, there are no apps about which I need to worry. I get phone notifications daily that some apps get shut off for non-use.
This lady is so misinformed. I love Clark’s show but this lady explained things in a bad way and she also left out A LOT of important information. Viewers didn’t get a good episode about security with this one.
Another approach to add it PWMgrs is to have compound PWs. For example, for my bank my PWMgr remembers "sdfhj2344@$@#89sfhfHHSJJDSOU345^$#". But that isn't the entire PW. The is another portion of the PW not stored anywhere but in my head. It is something extremely easy for me to remember that is associated with that account. If my bank is located in Ohio, having lived in Ohio I know the state tree is the "buckeye". I allow the PWMgr to fill in its portion of the PW. I then append or prefix my portion of the PW. Maybe I move 3 characters from the end of the PWMgr portion before I enter "buckeye", or, maybe it is tacked on the start of the PWMgr's string. Either way, my entire PW is not written down anywhere, even in the PW Mgr. Now, I only use this for high stakes accounts like banks, etc.
You don't need passwords if you don't make accounts with organizations. The fewer account you have, the less likely you are to get hacked. Don't store information with retail sites, always choose to shop and check out as a "guest" when possible,
Amazing tip, Clarkie! 🙌 Many of the accounts are marketed as earning rewards & discounts, so people will have to decide what's most important to them - rewards/discounts vs privacy. 💚
Awesome tip, I have always been inclined to create an account over using a guest account. Definitely will use guest more
What if you don't want to use biometrics?
Clark, bless your heart. She is not good at this
Have a new appreciation for Kim Komando after so many years. Thanks for having her on the show Clark.
I used to live in Atlanta and would listen to Kim on the radio all the time. Very knowledgeable!
What, no mention of Yubikey (a physical key) or Bitwarden? Hard to find this credible with not a single reference to either of these two important ones. Also, it was like watching an infomercial for Apple. Wow, Clark.
Clark, there is no one, and I mean no one is better suited to be interviewed than an actual computer programmer who has been educating people all his life. Steve Gibson from grc.
Wonderful interview with Kim the Great (in my opinion) - have learned so much from her over the years.
Oh, my goodness - I've been listening to Kim since the 90s. Thank you. 🥰
I was worried Kim might fall asleep during that extra-long intro, Clark! 😊 Seriously though, I love your content across all formats and Kim is awesome. Great to see her here.
😂
Good video. Love Kim. Love Clark, too, and Krista.
One of the best collabs in the business!!
Great show. Relevant and informative as always. Thank you for your service.
Kim Komando on the Clark Howard Show? The dream of the 90s is alive on UA-cam!
Nightmare
Portlandia!
Thanks for having her on. I had forgotten about her.
The Digital Goddess!
I get her newsletter, such great info
Great show Clark the passkey explanation was very brief, an she did not mention all the companies banks etc that do not support passkeys, dah it' will still be a while before passkeys are totally enhanced.
I turned it off when she said free products have security issues. Not true and the best password manager available today has a free version. Also, most Linux software is free and more secure than anything you use on other OS’s.
What's wrong with a free password manager like Bitwarden?
Of course we love FREE at Team Clark, but Kim says that the FREE ones are in exchange for your privacy. 💚
@Clark Bitwarden is a very respected one. Also, it is open source with transparent source code to be assured the software does not steal anything.
@@Clark How is Bitwarden in exchange for your privacy?
Bitwarden is great. I pay $10 a year to get extra features and to support the developers. Great value.
great program!!!
I have listened to both of you on the radio years ago. Good to see you are both still around!
Wow, blast from the past. Glad to see she’s still going.
Password Manager or not, I DO NOT keep banking information passwords on my iPhone (just in case the phone gets into the wrong hands). 😀
I’m coming around to using a password manager. Have to do more research..I use both Apple and Chromebook. I’d like a manager that I can access from both
Been listening to Kim forever. She is great!
Kim Commando look nothing like I thought she looks would look like, I listen to her everySunday night 🎉”!
Years ago, I sent an email to customer service at proton and they said that unless the recipient that you are corresponding with is also using proton, then your email is not encrypted
I would never use biometrics, because once it is hacked it is hacked forever.
It's all just way too complicated for me. I'm lost. I can't grasp it all. I feel like a sitting duck unable to protect myself from this digital world. Vanguard says my voice recognition is secure, but now I hear that it's not. I don't know what to do and if I did I wouldn't know how to do it. I recently learned that a picture of my face is as good as my real-time face so biometrics is no good either. I feel like cashing out all my money and hiding it under my bed would be the safest way to go.
Then you'll have the threat of a fire or a burglary. 🤷♂ No 1 method is 100% secure, so layering a couple of methods is key, as well as, keeping up with all of the changes. What worked at one time may not be the best right now because criminals cracked that code. As criminals become more advanced, we have to use something new to protect ourselves (i.e. now they know how to clone our voices). It's frustrating and unfortunate. 💚
@@Clark Yes, I know that; out of frustration I was being a bit facetious. I'm angry at the whole thing, but it is as it is.
So no 1 method is password manager?
So iOS password manager is best?
So don’t use passkeys?
Opps... check your percentages of Apple vs Android users...
Is any information on the Internet safe? It seems like it’s just a matter of time until the next hack.
Brave Search was released in Beta in March 2021.
PasswordSafe is free, and is at least as secure as any commercial password manager.
This was great info! Thanks to both of you.
The free rule is a good general principle but there are exceptions Like bitwarden. Bitwarden is completely open source that means If BW goes off the rails someone can just take the code and fork it make a new product based on that code. I am sure people are wondering how BW. makes money it has a few extra features fir a consumer it's like $10 a year and many people just buy it to support the developer team. Oh, and passkeys will not be replacing the password anytime soon and managers can store your passkeys so you're not locked into one product like apple for everything.
Wow! Love Kim Komando, thanks so much for doing this, Clark!
BS. FOSS is free but usually safer than paid proprietary software. KeepassXC is free, FOSS, and can be used offline. Syncing is what's bad. Anything that syncs is likely stored outside your control.
iOS has had a built in password manager for a long time. iOS 18 is just an evolution into it being a separate app. It was already saving passwords with biometrics ages ago.
I love Clark but this feels like my parents repeating what they heard from a “genius” at the Apple Store and getting it mostly wrong lol
Ha! Thanks for sharing additional info. 💚
Yeah, nothing new.
Thought the same. “Don’t use free password managers…unless it’s from Apple.” ?
There is more to it than just being a separate app. There is a huge security flaw in Keychain in that it was unlocked and passwords could be accessed with your iPhone passcode, so anyone could access all your passwords simple by unlocking your phone. The new Apple password app has a separate password from your passcode making it more secure and similar to third part password managers.
What about the safety and hack ability of Google's password manager or Any browser password manager.
Since you featured this in the title of your video, I was hoping there was going to be a more focused discussion other than just not to use a free password manager. Bummer!.
What’s with the headset helmet?
Thanks for the information. If I install the keeper app for my family, do I need to add secure file storage?
For security, what about a hard physical key like Yubikey for ultimate security protection? Is this still the way to go even though it's not accepted everywhere?
Awesome guest and advice
You didn't ask about where best to buy an Android phone.
Great! I'm going Komando right now.
🤦♂💚
Great show 😊
Funny she said only use a paid version of a password manager. Lastpass got hacked and lost customer's encrypted vaults and it was a paid service. Keepass is open source, has never been breached and you store your own database file on your own machine or in the cloud. Add to that a complex password/phrase and a key file on you own USB drive and you're good to go.
If you’re not in IT or otherwise not good on computers, KK can be a decent source of information. If you know what you’re doing then you think she’s mostly full of it. 😂
I agree. Many computer experts recommend using the OS's built-in virus scanner, as it's sufficient for most users. Also, Bitwarden is an excellent password manager. These options challenge her assertion that 'cheap' always means 'no good.' Being able to spot exceptions to rule is what distinguishes average advice from the best advice.
Let’s have the two least tech savvy people on the internet tell us about password managers. I love Clark for money advice but he’s no techie! Kim on the other hand is like that grandma who tries to understand tech but just can’t grasp it 😂
Thanks for your feedback! 💚
I let MacOS recommend a password and then use KeyChain for all my devices. Is this good enough?
That is exactly the correct method. Way better than any other crap.
That is the same feature she is raving about coming soon. It’s already there but they’re giving it its own button in iOS 18. Whoop de doo
No, unless you like all your passwords accessed by simply unlocking your iPhone, or your Mac screen lock password. A third party password manager, or the new Apple password app, require their own separate master password to access your passwords.
@@robertworden9810 ignore this entirely
KK is still the digital godess, as she used to identify.
Am I the only one wondering why Google Chrome's free password manager wasn't mentioned? It generates strong passwords and syncs them across your devices. What's not to like?
Yeah, you should stick with Apple Keychain or Google's system otherwise. No need for anything else.
Great info, thanks! 👍
I don't understand why hardware solutions like Yubikey wasn't mentioned. They are relatively inexpensive, easy to use and very secure, as long as you don't loan anyone your key. I've used one for over a year without an issue.
Good point! Maybe we can ask Kim next time.
Clark has mentioned hardware solutions like Yubikey on the show before, but we will consider researching and revisiting it. Thanks for putting it back on our radar! 💚
@@KLondike5 They don't "keep having" security failures. So far, one has been found that requires that the thief have physical access to your device for a period of time. Even then, it's a difficult fault to exploit. Hence my statement above "as long as you don't loan anyone your key." I protect my keys like I would cash. One on me, one in my desktop, which gets locked up in a safe when not being used, and one kept in a safe at my business.
Thanks Clark & Team! NNTR
Password managers are safe till they get hacked
PW managers are a necessity in 2024. In order to achieve enough entropy with passwords, the complexity is beyond what the human mind can remember for even one website or account. There are a half dozen good pw managers that are either free or nearly free that work satisfactorily.
Why is voice authenticator bad? Can it be hijacked, ai?
She has no idea.
there is a device online that will record your voice and can be used against you. sorry don't have a name but research it
LOVE Kim but there is NEVER One single solution. Using Biometrics is NOT the answer because Biometrics is NOT PROTECTED according the the US Supreme Court.
I almost fell asleep in her opening talking about herself
BUT ISNT AI ALREADY ABLE TO FAKE FACES? OR DOESNT PERSONAL AUTHENTICATION OPTIONS FOR FACE AND FINGERPRINT MAKE THE CRIMINAL just need to hold gun to us or knock us out to use our fingerprint or face to get in??
Was this a paid appearance for Kim? Expert? I'm not impressed. Which one should we use Kim? Oh the paid one. Yeah, thanks for that.
Unconventional user names, almost like a 2nd password ,, not an email address,
Weird passwords with multiple words, capitals, numbers, 2 symbols
2 factor authentication on all financial accounts,
Don’t store info on shopping websites
Don’t respond to unsolicited emails, texts, phone calls
What else ?.
Facial recognition -- No! Unless your phone can take 3d photos, it is very easy to hack, just use a picture. Way easy to hack.
I do not trust any password keeper nor biometric passwords. I have a password for all my accounts and each one is very different. Moreover, I never use any apps on my cellphone nor any public computers. Since my passwords are complicated I write them down in a little notebook which never leaves my huge gun safe. I also refuse to do online banking. If my phone gets lost or stolen, there are no apps about which I need to worry. I get phone notifications daily that some apps get shut off for non-use.
Excellent guest! Thank you!
Go ahead and track me, you'll learn how very boring I really am. 😂
🕊Hi 👋🏽 Clark & Kim
Great Advice 💻
Thank you 🌹
What is this tech. 101 or the 1980s. That gal is insulting clarks sheep. Its not the 1980s any more. Oy vey.
Clark, please stick to personal finance. This was more harm than good.
Wow. I remember listening to both Clark and Kim on th radio years ago. I miss Kim's husband Barry's show on KFYI in Phoenix.
Thanks, Team Clark
What's ridiculous is the asinine "password construction rules" and forced change periods.
OMG I think I’m in love! ❤❤❤
Robo Form I been happy with so far.
I'm one who it is very hard to impress, however, I'm quite impressed with her!!
Are password managers safe? One word, NO!
This lady is so misinformed. I love Clark’s show but this lady explained things in a bad way and she also left out A LOT of important information. Viewers didn’t get a good episode about security with this one.
Thanks for having Kim on! C'mon Clark come back to radio!
Hell no. Never allow biometricsl
She's . . . not that great. Clark, you could easily know more than her without much effort.
Thank you for answering my question Kim and Clark about the IPHONE!!!!
Thanks for being part of the show! 💚
Just a matter of time before the password app gets hacked no thanks
That old iPhone needs to be replaced now. And you buy from the Apple Store.
I had to stop watching. It was so lame.
So much misogyny in the comments. Sad.
Another approach to add it PWMgrs is to have compound PWs. For example, for my bank my PWMgr remembers "sdfhj2344@$@#89sfhfHHSJJDSOU345^$#".
But that isn't the entire PW. The is another portion of the PW not stored anywhere but in my head. It is something extremely easy for me to remember that is associated with that account. If my bank is located in Ohio, having lived in Ohio I know the state tree is the "buckeye".
I allow the PWMgr to fill in its portion of the PW. I then append or prefix my portion of the PW. Maybe I move 3 characters from the end of the PWMgr portion before I enter "buckeye", or, maybe it is tacked on the start of the PWMgr's string.
Either way, my entire PW is not written down anywhere, even in the PW Mgr.
Now, I only use this for high stakes accounts like banks, etc.
Kim has some tics & waaaay too much makeup on.
The 70’s called & they want their glossy clear lip-gloss back.
Misogynistic much? Not a good look on YOU
Hard to take her seriously with such an absurd name.
That's her real name.
Where have you been?
She's a LEGEND
@@Toeflresources 💯
It sure is Ben Sonic. I'm guessing your real last name is Dover.