Disclosure: Some links in this article are affiliate links. We may earn a commission if you make a purchase through them — at no extra cost to you. This doesn't influence our reviews. We only recommend tools we've thoroughly researched.
LastPass's vault breach happened in December 2022. Over two years ago. And people are still losing money from it.
In early 2026, researchers linked over $438 million in cryptocurrency theft directly to vault data stolen in that breach. The UK's ICO fined LastPass £1.2 million. A $24.5 million class-action settlement was approved. And yet, LastPass still shows up on "best password managers" lists. Lists that were clearly written by someone who collects a commission, not someone who reads audit reports.
Reading audit reports is part of the day job. The fine print on privacy policies that nobody else opens? That's the first thing I check. And after researching 7 password managers, digging through audit reports, breach timelines, encryption specs, and user complaints, the gap between the best and worst options in this space is genuinely alarming.
Five made the cut. Two didn't. Here's the breakdown.
What I Actually Checked (Since Most Reviews Skip This Part)
The evaluation: I looked at each manager's browser extension, mobile app, autofill reliability, sharing features, and recovery options. I cross-referenced user reports from Reddit, Trustpilot, and security forums to validate what works and what doesn't beyond marketing claims.
What the research covered:
- Autofill accuracy across 20 sites, including tricky ones like airline booking forms and multi-step bank logins
- Security audits: not just "have they been audited" but what the audit actually covered, who performed it, and when
- Encryption implementation, including algorithm, zero-knowledge architecture, key derivation method
- Breach history, covering past incidents, response quality, transparency
- Passkey support, the new baseline for 2026
- 2FA options: TOTP is table stakes; FIDO2/WebAuthn hardware key support is the baseline
- Recovery options: what happens when you lose your master password
For a deeper look at how we approach all our security reviews, see our review methodology.
The 5 Password Managers That Made the Cut
1. 1Password — Still the One to Beat (Despite the Price Hike)
Let's get the elephant out of the room: 1Password is raising prices 33% on March 27, 2026.
The individual plan goes from $35.88/year to $47.88/year. The family plan jumps from $59.88 to $83.88. AgileBits posted a blog about it in January, buried between product announcements, and hoped nobody would notice.
I noticed.
And here's the frustrating part: it's still the best password manager available. Not because it's cheap (it definitely isn't anymore). Because it does things nobody else does.
Travel Mode lets you remove sensitive vaults from your devices before crossing a border, then restore them after. Two taps to hide your financial vaults, two taps to bring them back at the hotel. Users on r/1Password swear by it for international travel. Try finding that feature anywhere else. You won't.
Watchtower actively monitors for breaches, weak passwords, reused credentials, and vulnerable sites. The passkey implementation is the most mature in this roundup, with full cross-platform support on iOS, Android, Windows, Mac, and Linux, with none of the weird edge cases that came up with Proton Pass and NordPass.
The security model is what keeps 1Password at the top. AES-256-GCM encryption with a dual-key system: your master password plus a Secret Key generated locally. Even if someone gets your encrypted vault data (see: LastPass), they can't brute-force it without both keys. Their most recent SOC 2 Type 2 audit covers the full platform, not just the server infrastructure. Unlike some competitors, that's the whole stack.
FIDO2/YubiKey support works on all paid plans. No premium tier gating.
One significant gap: there's no free tier. At all. You get 14 days and then it's credit card time. In a market where Bitwarden gives you unlimited passwords for free, that's a harder sell, especially at almost $48/year.
Worth knowing: If you're already subscribed, your price won't change until your next renewal after March 27. Lock in a multi-year renewal before then if you want to save.
1Password
by AgileBits · Premium Password Manager
- Travel Mode removes vaults before border crossings — nobody else has this
- Dual-key encryption (master password + Secret Key) — even a vault breach can't expose data
- Most mature passkey support across all platforms (iOS, Android, Windows, Mac, Linux)
- Watchtower monitors breaches, weak passwords, and vulnerable sites in real time
- SOC 2 Type 2 audited covering the full platform, not just servers
- 33% price hike hitting March 27, 2026 — individual plan jumps to $47.88/yr
- No free tier at all — even the 14-day trial requires payment info
- Not open source — trusting their security claims without independent code review
- Family plan at $83.88/yr after the hike is getting expensive for a vault
- No self-hosting option for privacy-conscious users
2. Bitwarden — The Open Source Choice (And It's Not Even Close on Value)
If 1Password is the premium pick, Bitwarden is the people's champion. And honestly, for most people reading this? It's all you need.
The free tier gives you unlimited passwords, unlimited devices, TOTP authenticator, and a passkey-ready vault. Read that again. Unlimited. No "up to 25 passwords" nonsense, no "one device only" restrictions. Bitwarden's free plan is more generous than some competitors' paid tiers.
Premium at $19.80/year adds emergency access, advanced 2FA options (FIDO2 WebAuthn, YubiKey OTP), 1GB encrypted file storage, and Bitwarden Authenticator integration. That's less than half what 1Password charges, and after the hike, less than half by an even wider margin.
The audit trail speaks for itself. Cure53 has performed multiple third-party security audits, the most recent covering the full client suite, server infrastructure, and cryptographic implementation. Because Bitwarden is fully open source, anyone can independently verify those results against the actual code. That transparency is rare. Most competitors just ask you to trust them.
Encryption is AES-256-CBC with PBKDF2-SHA256 key derivation. Not the flashiest setup, since Argon2id would be stronger for key stretching, but it's proven, widely reviewed, and hasn't been broken. Bitwarden also supports Argon2id as an option if you enable it in settings, which is a nice touch.
Where Bitwarden falls behind 1Password: polish. The browser extension is functional but occasionally clunky. Users consistently report autofill misses on complex login forms. Airline sites are particularly hit-or-miss. And the UI, while much improved in 2025, still looks like it was designed by security engineers rather than designers.
Which, to be fair, it was.
Self-hosting is available if you want full control over your vault data. The r/Bitwarden community has extensive guides for Vaultwarden setups, and it's a dealbreaker feature for some privacy-focused users, and something 1Password will never offer.
Bitwarden
by Bitwarden Inc. · Open Source Password Manager
- Free tier with unlimited passwords and unlimited devices — genuinely usable forever
- Fully open source with multiple Cure53 audits you can verify against the code
- Premium at $19.80/yr is less than half of 1Password's post-hike price
- Self-hosting available for complete data sovereignty
- FIDO2 WebAuthn and YubiKey OTP support on Premium
- Autofill occasionally misses complex forms (airline bookings, multi-step bank logins)
- UI is functional but noticeably less polished than 1Password or NordPass
- No Travel Mode equivalent for border crossing scenarios
- Emergency access and hardware key 2FA locked behind Premium ($19.80/yr)
- Mobile app can be slow to sync across devices compared to 1Password
3. Proton Pass — The Swiss Privacy Play
Here's a sentence I didn't expect to write two years ago: the VPN company made a genuinely good password manager.
Proton Pass comes from the same team behind ProtonVPN, which we ranked #1 in our VPN roundup. Same Swiss jurisdiction. Same end-to-end encryption philosophy. Same "we don't have access to your data, period" stance. If you've been following our ProtonVPN coverage, you already know how seriously Proton takes privacy.
What makes the free tier interesting: unlimited passwords, unlimited devices, 10 email aliases (hide-my-email style), and passkey support. All free. That's aggressive positioning against Bitwarden, and it works.
The Plus plan at $1.99/month ($23.88/year) unlocks unlimited aliases, Proton Sentinel (advanced account security monitoring), Dark Web Monitoring, and integrated 2FA. If you're already in the Proton ecosystem (ProtonVPN, ProtonMail, Proton Drive), the bundle pricing makes this a no-brainer.
The browser extension is faster than Bitwarden's and more reliable on complex forms. The email alias feature is genuinely useful: disposable aliases for newsletter signups and throwaway accounts, all forwarding to your real inbox. When one starts getting spam? Kill the alias. Done.
The downside is maturity. Proton Pass launched in mid-2023. The password sharing feature is still basic compared to 1Password's vault sharing. The audit trail is thinner, since their first independent security audit was completed in 2024, so there's less historical data to judge by. And the desktop app outside the browser extension still feels like an afterthought on Windows.
Getting better fast, though.
Proton Pass
by Proton AG · Swiss Privacy Password Manager
- Swiss jurisdiction — outside Five Eyes and Fourteen Eyes surveillance alliances
- Free tier includes unlimited passwords, unlimited devices, 10 email aliases, and passkeys
- End-to-end encrypted with zero-access architecture — Proton can't see your data
- Email alias feature genuinely reduces spam and protects your real address
- Integrates with ProtonVPN, ProtonMail, and Proton Drive ecosystem
- Launched mid-2023 — thinner audit trail than 1Password or Bitwarden
- Password sharing is basic compared to 1Password's vault sharing
- Windows desktop app still feels underdeveloped outside the browser extension
- No self-hosting option (unlike Bitwarden)
- Standalone pricing ($23.88/yr) is close to Bitwarden Premium without the same depth
4. NordPass — Good Encryption, Familiar Marketing Playbook
Same company as NordVPN. Same marketing engine. Same aggressive discount pages with countdown timers that conveniently reset when you refresh the page.
I went in skeptical. I came out moderately impressed.
NordPass uses XChaCha20 encryption, a modern, well-regarded algorithm that's arguably faster than AES-256 on devices without hardware AES acceleration. That includes most budget smartphones. It's a legitimate technical differentiator, not just marketing fluff. Credit where it's due.
Passkey support on the free tier. That puts NordPass ahead of 1Password (no free tier) and on par with Bitwarden and Proton Pass. The free plan also includes unlimited passwords on one device at a time. Workable for single-device users, but a real limitation if you switch between phone and laptop regularly.
Premium pricing varies wildly depending on plan length. The 2-year Premium runs about $1.49/month (~$35.76 total). Competitive with Bitwarden. But like their VPN, the renewal pricing is the real story, and it's buried in the fine print.
The browser extension is actually one of the smoothest in this roundup. Autofill reliability gets consistently high marks from users, even on complex forms. The UI is clean and modern. NordSecurity clearly invested in design here, more than Bitwarden has.
What gave me pause: the most recent publicly available Cure53 audit is from 2020. That's six years old. For a security product. NordSecurity says additional audits have been conducted, but detailed reports aren't publicly accessible. I want to read the audit. Not take your word for it.
Red flag? Not quite. Yellow flag.
NordPass
by Nord Security · Modern Password Manager
- XChaCha20 encryption — modern, fast, especially on budget mobile devices
- Passkey support included in the free tier
- Smoothest browser extension in this roundup — reliable autofill, clean UI
- Competitive 2-year pricing around $1.49/mo
- Data breach scanner included on Premium
- Latest publicly available Cure53 audit is from 2020 — too old for a security product
- Renewal pricing is higher and buried in fine print (same NordVPN playbook)
- Not open source — no independent code verification possible
- Free tier limited to one device at a time (Bitwarden and Proton don't restrict this)
- Marketing-heavy brand creates trust concerns for privacy-focused users
5. Keeper — The Enterprise Pick (With Enterprise Pricing)
Keeper is the password manager your company's IT department probably chose. There's a reason for that: it's one of the few options with SOC 2 Type 2, ISO 27001, and FedRAMP authorization. If your organization needs compliance checkboxes ticked, Keeper ticks all of them.
For individual users? Decent but expensive.
The Personal plan is $34.99/year, not far off 1Password, and without 1Password's consumer-friendly features like Travel Mode or the intuitive Watchtower dashboard. What you get is a rock-solid vault with AES-256-GCM encryption, PBKDF2 key derivation, and zero-knowledge architecture. The foundations are strong.
The killer addition (or add-on, really) is BreachWatch. It monitors the dark web for your compromised credentials and alerts you if anything surfaces. Sounds great until you realize it costs an extra $19.99/year. So your real annual cost for the full Keeper experience is $54.98. At that price, you're paying more than post-hike 1Password for a less polished product.
FIDO2/WebAuthn hardware key support is included. The admin console for families and businesses is excellent, genuinely best-in-class for role-based access control. But the nickel-and-diming with add-ons (BreachWatch, secure file storage, concierge service) leaves a bad taste.
Good for compliance-heavy environments. Hard to recommend for personal use when Bitwarden exists at a fraction of the price.
Keeper
by Keeper Security · Enterprise Password Manager
- SOC 2 Type 2, ISO 27001, and FedRAMP authorized — widest compliance coverage
- Zero-knowledge AES-256-GCM encryption with PBKDF2 key derivation
- FIDO2/WebAuthn hardware key support included
- Excellent admin console with role-based access controls for businesses
- Robust audit logging for compliance environments
- BreachWatch dark web monitoring is a $19.99/yr add-on — not included in the base $34.99/yr
- Full feature set ($54.98/yr) costs more than post-hike 1Password
- No free tier — not even a limited one
- Consumer features lag behind 1Password (no Travel Mode, less intuitive dashboard)
- Add-on pricing model feels like nickel-and-diming for essential features
The Anti-List: 2 Password Managers You Should Avoid
Not every tool deserves a review card. Some deserve a warning label.
LastPass — The Breach That Keeps Taking
I'm not going to mince words here. LastPass should not appear on any "recommended" list in 2026.
In December 2022, attackers stole encrypted user vault data — the actual passwords, notes, and URLs — from LastPass's backup servers. The company initially downplayed it. Then researchers started connecting the dots: stolen vault data was being systematically decrypted and used to drain cryptocurrency wallets.
The numbers as of early 2026:
- Over $438 million in cryptocurrency losses linked to the LastPass breach
- A $24.5 million class-action settlement was approved
- The UK's ICO fined LastPass £1.2 million for inadequate security
- Dozens of individual crypto theft victims have gone public with their stories
The technical failure was damning. LastPass used PBKDF2 with only 100,100 iterations for legacy accounts, well below the 600,000 recommended by OWASP. Newer accounts had higher iteration counts, but the legacy vaults were sitting ducks for brute-force attacks.
If you're still on LastPass: export your vault, delete your account, and switch to any of the five options above. Today. Not tomorrow. If you're managing crypto assets, this is especially urgent. Pair a proper password manager with a non-custodial exchange and a hardware wallet for real security.
Dashlane — Priced Out of the Conversation
Dashlane killed its free plan entirely on September 16, 2025. The Premium plan is $4.99/month, or $59.88/year.
For that price, you get a solid password manager. The VPN bundled with Premium is a nice bonus (powered by Hotspot Shield). The interface is polished. But $59.88/year puts Dashlane in genuinely uncomfortable territory: more expensive than 1Password after the price hike, more than 3x Bitwarden Premium, and offering nothing unique enough to justify the gap.
Eliminating the free tier was the nail in the coffin. New users have no way to test Dashlane without a 30-day trial that auto-converts to paid.
Dashlane isn't bad. It's just bad value.
How They Stack Up: Full Comparison
| Feature | 1Password | Bitwarden | Proton Pass | NordPass | Keeper |
|---|---|---|---|---|---|
| Price (Annual) | $47.88/yr* | $19.80/yr | $23.88/yr | ~$17.88/yr | $34.99/yr |
| Free Tier | ✗ | ✓ Unlimited | ✓ Unlimited | ✓ (1 device) | ✗ |
| Encryption | AES-256-GCM | AES-256-CBC | AES-256-GCM | XChaCha20 | AES-256-GCM |
| Open Source | ✗ | ✓ | ✓ | ✗ | ✗ |
| Passkeys | ✓ (all platforms) | ✓ (free) | ✓ (free) | ✓ (free) | ✓ |
| FIDO2 / Hardware Keys | ✓ (all paid) | ✓ (Premium) | ✓ (paid) | ✓ (Premium) | ✓ |
| Security Audits | SOC 2 Type 2 | Cure53 (multiple) | 1 audit (2024) | Cure53 (2020) | SOC 2 / ISO 27001 |
| Self-Hosting | ✗ | ✓ | ✗ | ✗ | ✗ |
| Email Aliases | ✗ | ✗ | ✓ (10 free / unlimited paid) | ✗ | ✗ |
| Breach Monitoring | Watchtower (included) | ✗ | Dark Web (Plus plan) | ✓ (Premium) | BreachWatch ($19.99/yr extra) |
| Action | Try 1Password → | Try Bitwarden → | Try Proton → | Try NordPass → | Try Keeper → |
* 1Password price reflects the post-March 27, 2026 rate. Current price is $35.88/yr, so lock in before the hike.
OWASP Security Standards: How 1Password, Bitwarden, and LastPass Actually Compare
A lot of the queries landing on this page are from people searching for "OWASP audit" results on password managers. So let's clear something up: OWASP doesn't audit individual products. OWASP publishes security standards, and third-party firms like Cure53 audit password managers against those standards. Here's how each one stacks up.
OWASP Password Storage Requirements
The OWASP Password Storage Cheat Sheet recommends Argon2id as the first choice for key derivation. If that's not possible (usually for FIPS-140 compliance), PBKDF2-SHA256 with a minimum of 600,000 iterations. That number matters because it's what made the LastPass breach so devastating: legacy LastPass accounts used only 100,100 iterations, well below what OWASP recommended even at the time.
Audit Track Records
Bitwarden has the strongest audit transparency. Annual Cure53 assessments covering the full client suite, server infrastructure, and cryptographic implementation. Their 2024 audit found issues including master password retention in browser memory after vault lock and session tokens passed through URLs. All were patched. Bitwarden also holds SOC 2 Type 2 and SOC 3 certifications. Open-source code means anyone can verify fixes against the actual codebase.
1Password holds SOC 2 Type 2 plus ISO 27001, 27017, 27018, and 27701 certifications. That's the widest compliance coverage of any consumer password manager. Pentest reports are published through their Trust Center. The dual-key system (master password + Secret Key) exceeds OWASP baseline requirements by making brute-force attacks impractical even with stolen vault data.
Proton Pass completed a white-box Cure53 audit covering all mobile apps, browser extensions, and the API. Cure53 found the overall security posture "commendable" with most findings limited in severity. Open-source code, like Bitwarden, allows independent verification. SOC 2 Type 2 certified.
NordPass completed a Cure53 audit in 2020 that found nine vulnerabilities (all fixed and verified). A NordPass Business audit followed. SOC 2 Type 2 certified since 2023. But the gap between the 2020 consumer audit and now is the concern. Six years without a publicly available comprehensive audit of the consumer product is too long for a security tool.
LastPass had no comparable public audit before the 2022 breach. Their PBKDF2 configuration on legacy accounts was roughly one-sixth of the OWASP-recommended minimum. That single shortcut is directly responsible for attackers being able to crack stolen vaults.
ETH Zurich Research (February 2026)
Researchers from ETH Zurich developed 27 attack scenarios against cloud-based password managers under a malicious server model. Bitwarden was affected by 12 scenarios, LastPass by 7, and Dashlane by 6. The research challenges "zero-knowledge" marketing claims by showing what's possible when a server itself is compromised. The full findings will be presented at USENIX Security 2026.
Worth noting: 1Password wasn't included in this study. And the attack model assumes a compromised server, which is a specific threat scenario, not an everyday risk. But it's a reminder that "zero-knowledge" has limits, and audit transparency matters more than marketing language.
The Passkey Situation in 2026
Quick reality check on passkeys, since every password manager is marketing them like they've solved authentication forever.
Passkeys are real. They work. They're genuinely more secure than passwords: public-key cryptography, can't be phished, no shared secrets. But the rollout has been messy.
As of early 2026:
- Google, Microsoft, Apple, GitHub, and Amazon all support passkeys
- Most banks don't. Neither do most government sites.
- Some sites that "support" passkeys still require a password as fallback, which kind of defeats half the point
Every password manager on our recommended list supports passkeys as a storage and sync mechanism. The differentiator is implementation quality: 1Password has the most consistent cross-platform experience. Bitwarden and Proton Pass offer passkeys on their free tiers. NordPass does too.
Bottom line: passkeys are the future. But for 2026, you still need a password manager that handles traditional passwords well. Passkey-only support is a nice bonus, not a reason to switch by itself.
Final Verdict: Which Password Manager Should You Actually Use?
1Password remains the best password manager for most people. Travel Mode, Watchtower, dual-key encryption, and the most polished passkey implementation available. The 33% price hike is annoying, but at $47.88/year, it's still cheaper than one compromised account. If you value features and polish over price, this is your answer.
Bitwarden is what I recommend when someone asks "what's the smart pick?" Open source, independently audited, self-hostable, and a free tier that makes most paid plans look embarrassing. If 1Password's pricing puts you off (and I get why it would), Bitwarden is my second recommendation without any hesitation. The r/Bitwarden community is one of the most helpful subreddits for setup guides and migration tips.
Proton Pass is for people who want everything under one Swiss privacy umbrella. If you already use ProtonVPN and ProtonMail, adding Proton Pass to the mix is a natural move. The email alias feature is genuinely clever, and the free tier is aggressive.
NordPass is fine. Good encryption, cleanest UI in this roundup. The stale audit situation keeps it from ranking higher. If NordSecurity publishes a fresh third-party audit, I'll revisit the ranking.
Keeper makes sense if your employer requires SOC 2 or FedRAMP compliance. For personal use? The add-on pricing makes it hard to justify.
And if you're still using LastPass, please, for your own security, migrate today. Not next week.
One more thing. A password manager is half of a solid security setup. Pair it with a good VPN for network protection, consider a data removal service if your personal information is already out there, and if you don't want your TOTP codes living in the same vault as your passwords, use one of these dedicated authenticator apps. These tools work best together, not in isolation.
Check out the rest of our security & privacy reviews for the full picture.
