Australian households need a real password manager. Two are worth using.

The Australian Cyber Security Centre keeps repeating itself, because the threat keeps repeating itself. Its current household guidance is to install a password manager, set a passphrase as the master password, and turn on multi-factor authentication on every account that supports it. None of that is new. Phishing pages still harvest reused logins. Breach dumps still surface on criminal forums every few weeks. The Privacy Act reform cycle in Canberra has not yet moved that burden off individual users, and probably will not in this parliament.

For most Australian households the question worth answering is not whether to use a password manager. It is which one to install on the family iPad and the partner’s work laptop, and how to move a decade of saved Chrome passwords into it without losing access to the bank, the kid’s school portal, or the streaming bundles.

Two products carry the load for almost every household this site recommends. They are 1Password and Bitwarden. Proton Pass is a worthwhile third for households already inside the Proton ecosystem. Apple’s built-in Passwords app, shipped with iOS 18 and macOS Sequoia, is a viable option for households that own only Apple devices and never need to log in from a Windows laptop or an Android phone. LastPass remains on the avoid list, for reasons the company itself disclosed in late 2022.

What we recommend (TL;DR)

For most Australian households, install 1Password Families for $A6.99 per month billed annually, get five seats, and set the partner up as the recovery delegate. If $A85 a year is more than the household will pay for software, install Bitwarden for free, accept that the user interface is rougher, and put the savings into a hardware security key for the master account.

If the household is already paying for Proton Mail or Proton VPN, Proton Pass is bundled into the higher Proton tiers and is mature enough to be the primary manager. Apple-only households can default to Apple Passwords in iOS 18 with one caveat noted below.

How a password manager actually works

A password manager handles three things. It generates passwords long enough to resist brute-force guessing. It stores them in an encrypted vault that follows the user across devices. And it autofills the right credential into the right login form, so the user never has to type or remember anything.

The encryption is what makes the model work. A modern manager applies AES-256 to the vault and derives the encryption key from the user’s master password through a slow key-derivation function such as PBKDF2 or Argon2id. The vendor never sees the master password and cannot decrypt a stolen vault on the user’s behalf. That property is what made the LastPass disclosure so significant in late 2022. LastPass confirmed that customer vault backups had been exfiltrated by an attacker and that the encrypted fields, in the company’s words, “remain secured with 256-bit AES encryption and can only be decrypted with a unique encryption key derived from each user’s master password.” The same disclosure conceded the attacker “may attempt to use brute force to guess your master password and decrypt the copies of vault data they took.”

That is the threat model a real password manager has to defend against. Strong master password, slow key derivation, and a small attack surface beyond the vault itself.

The browser-saved password feature in Chrome, Edge and Safari does not meet the bar. Microsoft acknowledged on 8 May 2026 that Edge loads saved passwords into computer memory at startup and described the behaviour as “by design”. A separate piece of malware running on the same device can read them. Chrome’s password store is similarly accessible to anything running under the user’s profile. Browser autofill is convenient. It is not a password manager.

The picks

1Password, the polished family choice

1Password is the household pick for buyers who want the software to fade into the background. The native apps on iOS, Android, macOS, Windows and Linux feel finished. Watchtower flags reused, weak and breached passwords as soon as the user opens the app. Travel Mode hides selected vaults when crossing borders. Browser autofill works in Safari, Chrome, Firefox and Edge without the friction of a third-party extension fight.

The pricing is the one talking point. 1Password Families costs US$4.49 per month billed annually, which lands at roughly $A6.99 per month at current exchange rates, or about $A85 a year for five seats. That is more than Bitwarden charges and is what the open-source crowd points at when questioning the recommendation. The argument for paying is straightforward. The interface is the difference between a household using the product and abandoning it inside a fortnight.

The security model is the other pillar. 1Password issues a 34-character secret key during signup that is combined with the master password before any vault decryption. A weak master password alone cannot decrypt the vault because the secret key is not in the attacker’s possession. That property is what differentiates 1Password’s threat model from LastPass’s at the time of the 2022 breach.

Pros: best-in-class native apps, Watchtower breach alerts, family seat sharing without seat-management hassle, the secret-key model is meaningfully harder to brute-force.

Cons: the price, and the apps remain closed-source, which some households treat as disqualifying.

Verdict: the right default for the average Australian household. Pay the $A85 a year and stop thinking about it.

Bitwarden, the open-source value pick

Bitwarden is what gets recommended when the price tag on 1Password becomes the deciding factor. The free tier supports unlimited passwords across unlimited devices, includes the password generator, autofill and passkey storage, and runs the same encryption model as the paid tiers. The Premium tier costs US$1.65 per month, around $A2.55, and adds emergency access, vault health reports, encrypted file storage and integrated time-based one-time-password codes. The Families tier covers six users for US$3.99 per month, about $A6.20, slightly cheaper than 1Password Families with one extra seat.

The software itself is auditable. Bitwarden’s clients and server are open source and have been independently reviewed by Cure53 and other firms. Households running their own Synology NAS or a small home server can self-host the server component if privacy guarantees are paramount. Most households will use the hosted service, which is operated out of US infrastructure, and that is a fair trade for the convenience.

The cost of the Bitwarden choice is in the user interface. The mobile apps and browser extensions work, but the polish is not at 1Password’s level. Onboarding a non-technical family member takes more patience. Households that are willing to absorb that friction get a manager that competes on every other axis.

Pros: the free tier is genuinely usable, open source and auditable, the self-host option exists, family pricing is the cheapest of the credible options.

Cons: the user experience trails 1Password by enough that adoption resistance from non-technical household members is real.

Verdict: the right pick when the household is paying attention to the bill and willing to spend an extra hour on setup.

Proton Pass, the privacy-first option

Proton Pass is the third name worth considering, particularly for households already paying for Proton Mail or Proton VPN. The manager is bundled into Proton’s Unlimited and family plans, which means a household paying for the wider Proton suite gets the password manager at no marginal cost.

The technical foundation is solid. Proton Pass is end-to-end encrypted under Swiss jurisdiction. The mobile and desktop apps were audited by Cure53 in 2024, and Privacy Guides notes the audit results “leave a rather positive impression in terms of security”. Hide-my-email aliases are integrated into the same workflow, which lets the household generate a fresh, anonymous email address per signup and forward it through Proton Mail. The aliases are the differentiating feature against 1Password and Bitwarden.

The hesitation is that Proton Pass is the youngest of the three and the feature surface, while improving fast, is not yet at parity. Family seat sharing is more constrained than 1Password’s. The desktop apps reached general availability later than the mobile apps. For a household already in the Proton ecosystem the answer is straightforward. Switch. For a household that is not, 1Password or Bitwarden is the sturdier starting point.

Apple Passwords, the Apple-only option

Apple Passwords, shipped as a first-class app in iOS 18 and macOS Sequoia in September 2024, is acceptable for households that own only Apple hardware and have no Windows or Android devices in use. The app autofills credentials across Safari and Apple’s native apps, generates passwords, supports passkeys, syncs through iCloud Keychain, and shares passwords inside Family Sharing groups.

The compromise is portability. There is no first-party Windows app and no Android app, only browser extensions for Chrome on macOS that do not extend to Chrome on Windows. A household member who buys a Windows laptop, takes a job that issues a Windows fleet device, or sets up a Linux machine for the kids will need a separate manager for that device. Households that are confident their device fleet will stay Apple-only can use it. Most households will not stay Apple-only for long.

What we’d skip

LastPass sits at the top of the avoid list. The 2022 disclosure remains the reference point. An attacker exfiltrated customer vault backups during two intrusions in August and November 2022. The vault data was encrypted with AES-256 and is computationally expensive to brute-force, but customers with weak master passwords or low key-derivation iteration counts have plausibly had their vaults decrypted in the years since. LastPass has continued operating, and the trust model has not recovered. Household guidance is to migrate. Both 1Password and Bitwarden ship LastPass importers that handle the bulk of the work.

Browser-saved passwords are the second item on the skip list. Chrome, Edge and Safari all offer to remember credentials, and all three have failure modes a real password manager does not. The Edge plaintext-in-memory disclosure from May 2026 is the most recent example. The convenience case for browser autofill is real, but it does not extend to family sharing, breach monitoring, passkey portability, or anything beyond filling the form on the device the password was saved on.

The advice sounds doctrinaire. It is the same advice the Australian Cyber Security Centre gives, and the same advice Privacy Guides gives. The household that follows it stops worrying about which sites have leaked the reused password from 2014.

Frequently asked questions

Is the password manager built into Google Chrome safe?

Google Password Manager is better than nothing, and it is significantly better than reusing the same password across sites. It does not match a dedicated manager on three fronts. It is tied to a Google account, which limits portability for households trying to leave Google. It does not offer family sharing in the way 1Password Families or Bitwarden Families does. And it does not flag breached credentials with the breadth that Watchtower or Bitwarden’s vault health reports do. For a single user firmly inside the Google ecosystem who accepts those limits, it is a defensible choice. For a household with mixed devices, it is not the right tool.

Should I pick 1Password or Bitwarden?

The answer comes down to who in the household will administer it. If the most technical person is willing to spend an hour onboarding the rest of the family and another hour every quarter triaging the vault health report, Bitwarden saves the household around $A60 a year. If the answer to the onboarding question is no, 1Password’s interface earns its price difference. The two products compete on roughly the same security posture.

Are family password manager plans worth it for the average household?

Yes, for two reasons. The first is that most household leaks happen through a partner’s or a child’s reused password, not through the most security-aware adult. A family plan covers everyone at a marginal cost per seat that is below the price of a coffee. The second is that family plans include shared vaults for things like the Wi-Fi password, the Netflix login and the streaming-bundle credentials. Without a shared vault those credentials end up in a Notes app or a text message, which is the failure mode the manager is supposed to eliminate.

Can I import passwords from LastPass?

Both 1Password and Bitwarden ship dedicated LastPass importers, and Privacy Guides hosts the most reliable third-party walk-through of the migration steps. The recommended sequence is to export the LastPass vault as CSV, import into the new manager, verify the count of entries matches, change the master password on the new manager to a fresh passphrase that has never been used elsewhere, then delete the LastPass account through its in-app closure flow. The CSV export should be deleted from the device once the migration is verified.

Do I need a password manager if I use Apple Passwords on my iPhone?

If every device in the household is an iPhone, iPad or Mac, and that is going to stay true for the foreseeable future, Apple Passwords is enough. The household has effectively chosen Apple as its sole identity provider and is betting Apple keeps shipping the app. The minute someone in the house buys a Windows laptop for work, hands a kid an Android phone, or sets up a Linux box for tinkering, that bet falls apart. A third-party manager is the better starting point for any mixed-fleet household, which over five years is most of them.