Password manager apps: Why you could be a “hacker’s dream” without one

Cloud computing and web-based apps have undoubtedly improved business efficiency. But once you and your team start using various online apps, one aspect quickly becomes inefficient (not to mention downright annoying): having to repeatedly enter usernames and passwords to log in. 

It’s bad enough having to enter a multitude of login credentials when you first open the apps each morning. But many apps automatically log you out if you haven’t been using them for a few minutes. And while it’s a nice security feature, it means you have to repeat the entire process whenever you take a breather. 

Wouldn’t it be great if a ‘master control’ app could automatically enter your username and password whenever an app asked for them? Of course, you’d have to log into the master control app first, and that login process would have to be very secure. But just imagine how much time and frustration it could save. 

The good news is that, to quote an all-too-familiar phrase, “There’s an app for that”. In fact, there are quite a few password manager apps available. 

And you really should be using one. 

Why you shouldn’t enter your passwords any other way 

“But I don’t need a password manager app,” you say. “I use the same username and password for all my logins, so it’s pretty easy to remember.” 



Congratulations. You have become what’s known in the online world as “a hacker’s dream”. 

Why? Because once a hacker figures out your username and password on one site, they can use the same username and password to access every other site you use. And before you assume they couldn’t possibly know the other online sites you use, they can run a program that tries your username and password on hundreds—if not thousands—of sites in a matter of minutes. It’s not a question of whether they’ll find those other sites. It’s only a question of when. 


“But it’s more convenient doing it this way,” you might say. 


Sure it is. For now. But you may think differently when every online system you use—online banking, email, social media, etc.—has been compromised. 


Even if you discover the security breach straight away, it can still take months—if not years—to recover. You could lose your savings, your business, or even your identity. 


But there’s no point creating different usernames and passwords for each site if you’re just going to put them on sticky notes. Whether it’s a physical one on your whiteboard or an electronic one in your computer, they’re still incredibly easy to find and use without your knowledge. 


How about storing them in a note-taking app such as Evernote or OneNote? Without any form of encryption, these apps aren’t much better than the sticky note app on your computer. 


And for goodness sake, don’t email them to yourself so you can use a keyword search to find them. Not only will they be stored without any encryption, your email can easily be intercepted and read. 


So, unless you have a perfect memory and can type incredibly fast, the only real solution to having unique, secure passwords is to use a password manager app. 

Here are six reasons you should use a password manager app. 

1. You’ll no longer be “a hacker’s dream”. With password managers you only need to remember the username and password for the app. Then, whenever you access a secure website, it will look up the username and password you created for the site (which are securely stored online) and enter them automatically.

Because you don’t need to remember them all you can use a different username and password for each site, which is far more secure than using the same one for them all.

And if someone gets access to one of the sites you use, they still won’t be able to access any others. 

 

2. You can use more secure passwords. The most secure passwords use a combination of upper- and lower-case letters, numbers and special characters. But when you have to remember them (and type them in over and over again), it’s tempting to use simple passwords that are less secure.

With a password manager, you can make them as long and complex as you want because it’s the password manager app that remembers them all and types them in for you. It can even create new passwords automatically, such as “Sp?45AqG&&l6p#BzK”. 


These random, nonsensical passwords are far more secure than the names of your pets, family members, favourite movie or other commonly used passwords. And the chances of hackers guessing your password, even with the software they use to generate them automatically, is extremely low.

All you need to do is choose a strong password for your password manager.

 

3. Your login details will be encrypted. If you’re worried whoever created the password manager will have access to all your usernames and passwords, relax. All of your information is encrypted (scrambled), and only the strong password you use to log in can decrypt (descramble) that information. It’s the same level of security used with Internet banking, and a lot more secure than sticky notes.

 

4. You can use two-factor authentication for even better security. Let’s say someone works out the username and password you use for a website. That means they can log onto the site, enter your details and they’re in, right?

Not if you’ve set up two-factor authentication. Instead they’ll be asked to provide another piece of information only you can provide. It could be a random code to your mobile number via SMS, or one only your phone can generate. It may even ask for your fingerprint via your smartphone.

And without that other bit of information, they won’t get access.

Two-factor authentication can be used not only on websites, but also the password manager itself. And while some people find the extra step inconvenient, it’s an added layer of security that’s well worth considering. 

 

5. You can share passwords more securely. Let’s say you need to give a staff member or contractor access to financial or other sensitive data (a common scenario when working with freelancers and remote workers). One option would be to give them a username and password, which they would enter to access the information. But what’s stopping them from writing them on a sticky note, or emailing the details to themselves (or worse, someone else)?

With a password manager you can set them up with a password that is never revealed to them. It will log them in, but they never see what it is, and therefore can’t share it or even write it down.

 

6. You can revoke a person’s passwords instantly. When people leave your organisation for whatever reason, you need to make sure they can no longer access your information. If they’ve written their passwords down somewhere you have no choice but to manually change or remove the password on every system they had access to.

But with a password manager you can revoke all of their logins easily—and instantly.

How to get started with a password manager 

If you love evaluating apps and technology, check out the apps mentioned earlier and see which one best fits your needs. 


But if you want to start using a password manager straight away, choose LastPass. It lets you have a Free or Premium plan for your personal accounts and an Enterprise plan for your business. You can even link your personal and business LastPass accounts so all your logins are in the your own LastPass view. This saves you having to log in and out of separate LastPass accounts whenever you need to switch from a business-related web app to a personal one.

And don’t worry. Even when you link your personal and business LastPass accounts, team members using your LastPass Enterprise account still won’t be able to see or access your personal logins. 

It really is the perfect combination.


Need help with your accounting?

Find Out What We Do

Understanding car fringe benefits.

August 13, 2025
If your business provides a car to an employee (or you’re the business owner/employee using it), there’s a good chance the Fringe Benefits Tax (FBT) rules apply. A car fringe benefit arises when a car owned or leased by an employer is made available for the private use of the business owner, an employee or their associate (such as a family member). “Private use” doesn’t just mean weekend road trips — it can include everyday commuting and even cases where the car is parked at an employee’s home, making it available for personal trips. Understanding how FBT is calculated and what records to keep is essential for compliance — and for avoiding paying more tax than necessary. What counts as a “car” for FBT purposes? The FBT law defines a car as a motor vehicle (except a motorcycle or similar) designed to carry less than one tonne and fewer than nine passengers. From 1 July 2022, some zero or low-emission vehicles are exempt from FBT, provided they meet certain criteria — for example, they must be first held and used after 1 July 2022 and must not have attracted Luxury Car Tax. Electric vehicle running costs, such as charging, are also exempt when the vehicle itself qualifies. Two main methods for calculating FBT on cars There are two ways to calculate the taxable value of a car fringe benefit. 1. Statutory formula method This method applies a flat 20% statutory rate to the base value of the car, adjusted for the number of days in the FBT year the car was available for private use. The formula is: (A × B × C ÷ D) − E A = Base value of the car (cost price plus GST and certain accessories, less registration, stamp duty and eligible reductions) B = Statutory fraction (generally 20%) C = Days available for private use D = Total days in FBT year (365) E = Employee contributions If the car has been owned for at least four full FBT years, the base value can be reduced by one-third. 2. Operating cost method This method calculates the taxable value by applying the private use percentage to the total operating costs of the car (actual and deemed costs). The formula is: Taxable value = [Operating costs × (100% − Business use %)] − Employee contributions Operating costs include: Fuel, oil, repairs, maintenance, registration and insurance Lease costs (for leased cars) Deemed depreciation (25% diminishing value) and deemed interest for owned cars Certain costs, such as tolls, car parking and insurance-funded repairs, are excluded. The business use percentage is determined by odometer readings, logbook records, and a reasonable estimate based on usage patterns. The three-month logbook requirement (operating cost method only). If you use the operating cost method, you must keep a logbook for at least 12 continuous weeks (roughly three months) to record: The date of each trip Odometer readings at the start and end Total kilometres travelled Whether the trip was for business or private purposes The purpose of each business trip This logbook is generally valid for five years, but you must start a new one if usage patterns change significantly (e.g., a role change, relocation or different duties). You also need to record odometer readings at the start and end of each FBT year. Why record-keeping matters. Keeping accurate records can support a higher business use percentage (and therefore a lower FBT bill). They also ensure you claim only legitimate business kilometres and help you provide evidence if the ATO reviews your FBT calculation. Finally, your records help you decide which calculation method (statutory or operating cost) is more tax-effective. Key takeaways for businesses and employees. If a car is available for private use, FBT may apply — even if the car isn’t driven often for personal trips. Electric cars may be FBT-exempt if they meet eligibility criteria, but you may still need to calculate their taxable value for reporting purposes. The operating cost method often works better if business use is high — but only if you have a compliant logbook. Keep odometer readings, expense records and a valid logbook to support your claims. Need help with your FBT obligations? Get it at Ascent Accountants. We guide business owners through every step of FBT compliance — from choosing the right valuation method to maintaining the right records for ATO peace of mind. If you provide cars to employees or use a company vehicle yourself, now is the time to review your FBT position before the next FBT year rolls over. Let’s talk .

EOFY checklist for FIFO workers.

August 13, 2025
Hey FIFO workers. You work hard for your money. Let’s make it work hard for you this EOFY. Tax time it’s your chance to set yourself up for long-term financial security. From deductions and super to loan reviews and goal setting, our FIFO EOFY checklist can help you turn your hard-earned income into lasting wealth.

Understanding R-Codes: Why zoning matters in WA’s property market

August 13, 2025
Zoning can shape your property’s value, development potential and future income. Whether you’re buying, selling or investing in WA, understanding R-Codes is a must. Read the full blog to get the facts.

What does “comfortable retirement” really mean?

July 14, 2025
What does a “comfortable” retirement mean to you? For some, it’s travel and lifestyle. For others, it’s simply having the bills paid on time without stress. Whatever your version of comfortable looks like — the key is planning. We’re here to help!

What is a Clearance Certificate? Why do you need one when selling property?

July 14, 2025
Selling property in Australia? Don’t forget your Clearance Certificate — it could SAVE you THOUSANDS at settlement. If you don’t have one, the buyer is legally required to withhold part of your payment — delaying and reducing what you receive. Applying is free and easy — and Ascent Accountants can help you get it sorte

Is your TPAR lodged? Don’t be penalised this August.

July 14, 2025
If your business paid contractors during the last financial year — think tradies, cleaners, and more — you may need to lodge a Taxable Payments Annual Report (TPAR). Missing it (deadline: 18 August!) can lead to late penalties. Not sure if you need to lodge or what to incl
More Posts