I assume it's the same with LastPass, but I use 1Password and that requires you to enter a master password to unlock the passwords, where as Chrome requires no extra authentication.
What do you mean? The whole thing can be encrypted with a master password, and LastPass offers an option to simply remember your master password with the browser extensions/desktop apps that I assume many people use.
> LastPass offers an option to simply remember your master password
It does, but it gives you a VERY strongly-worded warning when you enable that.
I like LastPass for a few reasons -
* It lets me share my personal account with my work account so I can keep them separate (so when I log in on my work PC, I still have my personal passwords, but I log in to my personal account on my devices so I don't have to worry about someone getting access to work passwords on there).
* 2FA
* If I try to set a master password that's the same as one of my passwords I'm storing in there, it warns me.
1Password, at least, does not offer a 'remember master password' feature. I also configure it to auto-lock and auto-clear the clipboard on aggressive timeouts (I suspect other password managers allow for this too)
How would that help with the aforementioned TeamViewer breach? Unless your timeout is 1 min or less, the attacker can just watch and wait until you've logged in somewhere with LastPass and then quickly act.