Ok...but my question is "how would another person get access to my pc?"

How so? Modern password managers auto fill.

It's all from the same single database.

Does not matter which device I update a password from.

It all syncs back to the same single instance.

Plus they all have desktop, mobile, even watch apps. My password manager account is secured through MFA.

I'm never without access and it's always in sync.

Well if you stay online gimme about 20 minutes and I'll show you. SmileWavy

it's that easy??

Chrome LOST a bunch of my passwords when it "updated" itself

20 minutes was an exaggeration, but it's not that hard.

People are creatures of habit.

It's a highly exploitable trait.

Creatures of habit....that I am.

Never had a problem before, but prob time to reassess.

Our home computer was hacked about 3 weeks ago. I've been meaning to write up the story and post it here but have been busy with life. 4 hours of anxiety and misery on a Sunday night calling credit card companies.... it wasn't fun. And then another 10 or more hours changing passwords to every financial institution, email and anything else we considered of "value" that might be at risk.

No one ever had a problem before they had a problem.

Yuch. Sorry. Maybe to spiral notebook is safest and most reliable.

Document them in Notes on your phone.

Most of our accounts require access by myself and my wife, so we are talking two iPhones and two laptops. So I’ll play devil’s advocate and ask a question - what if you use a password manager app across multiple devices and then the app is hacked? Seems like that’s even worse than just having a single account hacked, much like having your entire laptop stolen with all of the auto fill passwords populated.

That is the reason I don't use a password manager that is online. The Department of Defense, CIA, FBI, Apple, Microsoft, IRS and lots of other large "secure" organizations have been hacked, and data stolen.

I have never been hacked, or had a computer virus and I have used computers since back to the DOS 2.0 days when it was a dream to have the "full 640K" of RAM and a 10 MB hard drive.

I too have a file on my computer in a sub sub folder that just looks like another file in a among a lot of other files with my list. No one else uses my computers.

it only takes on trojan that get's through..
The program don't care that the file "looks" like just another file, the algorithm will scan it anyway and recognize a password list when it finds it. And then all yer chit is compromised..

I think risk of your individual computer being hacked is much higher then the google cloud getting hacked.

Bitwarden can be self hosted.

If you believe in security through obscurity then you self host.

If you believe your PC is always secure then self host.

And FWIW, I did a couple of years in Enterprise security, DOD was one of our largest clients.

We should all be very worried about their security.

I guess I "self host". I made an encrypted partition on my computer and keep text files in it containing my passwords. I make up passwords from stuff I see around the house. A reminder of the password for the partition is in my screen saver, but you'd never find it.
For things I need cross-platform portability I take a picture of it. One of pics is the side of my coffee maker. The password is the coffee maker model and serial number. If someone gets a hold of my phone I'm sure they are going to wonder why I have so many strange pictures. There are only ten or so passwords that I need on my phone.
I tried a password manager but didn't trust it. One thing I HATED was it would make up a password, apply it, store it away and I never see it. Safari wants to that now and then too.

So which is the best?

Bitwarden?

I need to do something. My blood boils every time I need a new password or need to enter one I have long forgotten. There is the risk but the risk of a heart attack is there too.

I hate f'ing passwords.

I bet the odds of me getting a trojan or virus is way lower than the password manager programs. They have a constant barrage of hackers trying, and it just takes one to get in. No one is bothering to try my home network. I have a new router, with up to date firmware, Anti-Virus and Anti-malware paid for subscriptions not free versions, and I have three different backup routines, and common sense to avoid trojans and malware.

LastPass did away with their free tier even though a paid plan, even family plan, is cheap enough.

Bitwarden is zero knowledge which is good, or bad if you are an idiot like me and fat finger your master pass.

There is no master pass recovery so if you forget it the only option is to delete your account and start over. Ask me how I know, lol.

You can regularly export a csv or locally encrypted json to negate that scenario a bit.

If you secure the master account with MFA you can be a bit lax on the complexity of the master pass.