Autofill Passwords

Each website you visit should have its own, unique password. The average person has at least 10 online accounts—that means you could have 10 or more different login credentials! With all the passwords we must remember, any shortcut or way to simplify the log in process is welcomed.

Your internet browser provides the option to store and autofill your passwords. While an autofill feature integrated with your browser might seem like something you should use, don’t. While it is safer than writing your passwords down, the autofill feature isn’t that secure.

Auto-fill Passwords Are Dangerous

Web browsers have a feature that allows you to automatically store usernames, passwords, and other information you’ve entered in a form. If it automatically enters your information and removes the burden of remembering another set of credentials, then why not use it? While it might seem convenient, autofill passwords have some unforeseen repercussions.

Hidden Boxes

Hackers have discovered ways to exploit the autofill feature. By placing an invisible form on a compromised website, the hacker can trick your browser into entering your information. You read that right; hackers use invisible forms, or hidden boxes to create a new, effective phishing-style attack.

These hidden text boxes are placed on websites and capture your data without your knowledge. As you start filling out your name, the hacker’s hidden boxes are grabbing other autofill data, such as email addresses, credit cards, or any other information that has automatically been stored.

Suddenly, everything stored in your browser’s autofill feature is compromised, and you can’t even see it happening!

What Should You Do?

Disabling the autofill feature is a simple and effective way to improve your account security.

  • If you use Chrome – Open the Settings window, click Advanced, and select the appropriate settings under Manage Passwords
  • If you use Firefox – Open the Options window, click Privacy, and under the History heading select “Firefox will: Use custom settings for history.” In the new window, disable “Remember search and form history.”
  • If you use Safari – Open the Preferences window, select the Auto-fill tab, and turn off all the features related to usernames and passwords.

This is just one small thing you can do to keep your accounts and the information they contain safe.