Beste wachtwoordmanagers in 2026: wat is veranderd, wat is verdwenen, wat komt hierna

1. The Great Shakeup (2025–2026)

If you haven't checked your password manager setup since last year, you may be in for a surprise — and not a good one.

The password manager market went through more upheaval between mid-2025 and early 2026 than in the previous five years combined. Dashlane killed its free plan. Bitwarden raised prices for the first time in a decade. 1Password quietly hiked rates by up to 33%. And researchers at ETH Zurich exposed serious cryptographic flaws in three of the biggest cloud-based managers simultaneously.

Meanwhile, passkeys hit critical mass. iOS 26 finally let you export passkeys to third-party managers. And LastPass continued its slow-motion disaster — now with $438 million in documented cryptocurrency losses linked to its 2022 breach.

This guide cuts through the noise. It covers every major change, updated pricing, and honest recommendations for 2026. If you're looking for what was true in 2025, we've kept the original guide intact — but this is where you want to be now.

2. The 2026 Threat Landscape

The numbers aren't getting better:

The headline finding: 94% of passwords in breach databases are weak or reused. That means nearly everyone who isn't using a password manager — or isn't using it properly — is functionally exposed.

AI-powered cracking has accelerated the timeline further. A 2025 study testing 14.2 million real-world passwords found that 85.6% could be broken by an AI-powered system in under ten seconds. GPU clusters used in modern attacks are orders of magnitude faster than those from even three years ago. Eight-character passwords with mixed case and symbols, once considered strong, are now trivially crackable.

The current NIST guidance: 15 or more characters, randomly generated. A password manager is the only practical way to maintain that standard across 100+ accounts.

3. The Passkeys Era

Passkeys have crossed the tipping point.

• 69% of consumers now have at least one passkey (up from 39% two years ago)
• 54% find passkeys more convenient than passwords
• Google: 800 million accounts with passkeys, +352% growth after making them default
• Microsoft: Made passkeys the default for new accounts (May 2025), +120% growth
• Amazon: 175 million users created passkeys in the first year
• 87% of enterprises have deployed or are planning passkeys (FIDO Alliance)

The iOS 26 Breakthrough

For years, passkeys created on Apple devices were effectively trapped in iCloud Keychain. If you wanted to switch to Android or a cross-platform manager, your passkeys didn't come with you.

iOS 26 (September 2025) changed that. Apple implemented the Credential Exchange Protocol (CXP) developed by the FIDO Alliance — a standard that lets users transfer passkeys and passwords directly between credential manager apps, end-to-end encrypted, authenticated with Face ID. No insecure CSV exports. No plaintext files. Just a secure, app-to-app transfer.

Bitwarden was the first third-party manager to support CXP. 1Password, Dashlane, and Proton Pass are actively adopting it.

What This Means for Your Choice of Manager

Passkey support is now a baseline requirement, not a differentiator. What matters in 2026 is cross-platform passkey sync — creating a passkey on your iPhone and actually being able to use it on Windows or Android.

Every manager reviewed below supports passkeys. The differences are in how well they sync across ecosystems and whether they can import/export via CXP. For a deeper dive, see our Passkeys Ultimate Guide.

4. Updated Pricing Table 2026

Key notes:

• Bitwarden: First price increase in 10 years. Existing users received a 25% discount on their first renewal. The free plan remains fully functional.
• 1Password: Explained the increase as reflecting \"growing product value and security investment.\" No grandfathering for existing subscribers.
• Dashlane: Free accounts moved to read-only mode on September 16, 2025, and will be permanently deleted on September 16, 2026. The cheapest current plan is $4.99/mo (~$60/yr).
• NordPass: Pricing varies heavily by promotion. Advertised rates range from $1.38/mo (2-year plan) to $2.99/mo (base). Treat any price you see as subject to change.

5. Top Managers Reviewed

Bitwarden — Best Free Tier, Steeper Paid

Best for: Users who want a capable free plan or don't mind paying a little more for open-source transparency.

Bitwarden remains the gold standard for free password management. The free tier offers unlimited passwords, cross-device sync, and end-to-end encryption — features that competing \"free\" plans have been eroding or eliminating.

The paid tier ($19.80/yr as of 2026) is a significant jump from before but still one of the most affordable premium options on the market. New in 2026: flexible monthly billing (previously annual only) and proactive phishing defense.

Strengths: Open source, self-hostable (via Vaultwarden on Raspberry Pi), strong free tier, actively audited.

Weaknesses: Interface is functional but dated compared to 1Password. Recent price increase may surprise existing users.

1Password — Best UX, Premium Price

Best for: Teams, families, and users who want the most polished experience and are willing to pay for it.

1Password continues to lead on user experience. Its Secret Key architecture — a random device-side key that makes server-side attacks mathematically impossible — was highlighted as best-in-class by the same ETH Zurich researchers who found issues in the other managers.

New in 2025–2026: SSH key management, Watchtower breach monitoring improvements, and MSP Edition on Pax8 Marketplace. The March 2026 price increase ($3.99/mo individual, $5.99/mo families) puts it at the higher end of the consumer market, but the quality justifies it for users who will actually use the advanced features.

Strengths: Best-in-class security architecture, excellent cross-platform UX, strong family and team features, Travel Mode.

Weaknesses: No free plan. Price increase with no grandfathering for existing users.

NordPass — Clean Record, Modern Encryption

Best for: Users who want modern encryption (XChaCha20) and a clean security track record at a mid-range price.

NordPass uses XChaCha20 encryption — considered more future-proof than AES-256, particularly on mobile hardware. The company has no reported breaches, which stands in contrast to LastPass and even the recent ETH Zurich findings (NordPass was not included in that study).

New features added in late 2025 and 2026: Email Masking (creates disposable addresses to protect your real email), Time-Limited Sharing, document storage (passport, ID), and NordProtect (credit monitoring, TransUnion credit lock, loan monitoring — launched December 2025).

Pricing is confusing because of frequent promotions. Expect to pay $1.59–$1.99/mo on a 1–2 year plan, with a base rate of $2.99/mo.

Strengths: XChaCha20 encryption, no breach history, email masking, strong free tier (unlimited devices, unlimited passwords on one active session), passkey support.

Weaknesses: Free plan limits simultaneous logins to one device. Pricing is opaque due to constant promotions.

Proton Pass — Privacy-First, Strong Free

Best for: Privacy-focused users, journalists, activists, and anyone who wants Swiss-jurisdiction data protection.

Proton Pass is backed by Proton — the company behind ProtonMail and ProtonVPN — and operates under Swiss privacy law. It's open source, independently audited, and offers one of the most generous free tiers in the market: unlimited devices, unlimited passwords, and basic email aliases.

New in 2025–2026: Proton Pass CLI (terminal/script access to your vault), enhanced SimpleLogin integration for email aliases, and Proton Sentinel (AI-powered threat detection for your account).

For users already in the Proton ecosystem, the Proton Unlimited bundle (Pass + VPN + Mail + Drive + Calendar) is compelling value.

Strengths: Swiss jurisdiction, open source, strong free plan, email aliases built in, AI-powered Proton Sentinel protection, no breach history.

Weaknesses: Ecosystem is strongest if you're already using other Proton products. Less polished than 1Password on some platforms.

Dashlane — ⚠️ No More Free

Best for: … fewer users than before.

Dashlane ended its free plan on September 16, 2025. Accounts that had been free are now read-only until September 2026, at which point they'll be deleted. The cheapest current plan is $4.99/mo (~$60/yr) — among the most expensive in the consumer market.

Dashlane still has legitimate strengths: strong UX, passkey support (40% of Dashlane users now store at least one passkey, double the year-ago figure), and the platform proactively addressed some of the ETH Zurich vulnerabilities. But the combination of price and free plan removal makes it hard to recommend over Bitwarden, NordPass, or Proton Pass for most users.

If you're currently on Dashlane: Free accounts became read-only on September 16, 2025. Export your vault before permanent deletion after September 16, 2026.

Strengths: Good UX, strong passkey adoption, proactive security response.

Weaknesses: Most expensive mainstream option, free plan eliminated, some ETH Zurich vulnerabilities still unresolved.

Keeper — Enterprise Focus

Best for: Businesses and teams that need advanced access control, compliance reporting, and IT integrations.

Keeper doesn't make a lot of noise in consumer circles, but it consistently appears in enterprise security roundups. Features like role-based access controls, detailed audit logs, and integration with SSO providers make it appropriate for organizations with compliance requirements (SOC 2, HIPAA, etc.).

For individual users, Keeper starts at $2.92/mo — competitive with 1Password, but without the same breadth of consumer-friendly features. Probably not your first choice unless your employer uses it.

Built-in Managers (Apple Passwords, Google Password Manager, Edge)

Built-in managers have become genuinely good. Apple Passwords (iOS 18+) now supports passkeys, breach monitoring, and — as of iOS 26 — CXP-based export to third-party apps.

When built-in is fine: You're entirely in one ecosystem (all Apple or all Google), you have simple needs, and you're not sharing passwords with family members.

When to upgrade: You use multiple platforms, need family or team sharing, want advanced breach monitoring, or store anything beyond basic passwords (SSH keys, secure notes, payment cards).

6. Open Source & Self-Hosted

KeePassXC

The gold standard for fully offline password management. Your vault never touches a cloud server — it's an encrypted file you control entirely. KeePassXC is the actively maintained cross-platform fork (Windows, macOS, Linux).

Tradeoffs: sync between devices requires you to manage the file yourself (via Syncthing, iCloud, or similar). No built-in breach monitoring or sharing. Not for everyone, but ideal for users with high threat models who don't trust any cloud service.

Vaultwarden (Self-Hosted Bitwarden)

Vaultwarden is a lightweight, community-maintained Bitwarden-compatible server that runs on minimal hardware — including a Raspberry Pi. You get the full Bitwarden client experience (browser extensions, mobile apps) with your own server as the backend.

In 2026, Vaultwarden is actively developed and widely used. It's the best option for users who want cloud-like convenience without trusting a third-party server.

7. Who Should Use What

Use this decision tree to find your fit:

• Do you want to pay nothing? → Bitwarden Free (best all-around) or Proton Pass Free (if privacy is paramount) or KeePassXC (if you want fully offline)
• Are you entirely in the Apple ecosystem? → Apple Passwords is now good enough for basic use. Upgrade to Bitwarden or 1Password if you need cross-platform sync or advanced features.
• Do you want the best UX and don't mind paying? → 1Password ($3.99/mo individual, $5.99/mo families)
• Do you want modern encryption and a clean security record at a mid price? → NordPass (~$1.59–1.99/mo on promotion)
• Is privacy your top priority? → Proton Pass (Swiss law, open source, free tier, email aliases)
• Do you currently use Dashlane Free? → Export your vault immediately. Migrate to Bitwarden Free or Proton Pass Free.
• Are you managing a team or business? → 1Password Teams/Business or Keeper for enterprise
• Do you want full control over your data? → KeePassXC (offline) or Vaultwarden (self-hosted)

8. Security Track Records 2026

LastPass — The Ongoing Disaster

The original guide already excluded LastPass from recommendations. The situation has only worsened:

• $438 million in cryptocurrency losses directly linked to the 2022 breach (TRM Labs, December 2025)
• $24 million class action settlement (December 2025): $8.2M for general data exposure, $16.25M for cryptocurrency losses
• £1.2 million fine from the UK Information Commissioner's Office for inadequate security measures
• January 2026: Active phishing campaign targeting LastPass users with fake maintenance notifications
• Root causes cited: a senior engineer worked with production keys on a personal laptop; personal and work vaults were connected with the same master password; AWS keys weren't rotated after the initial incident

Recommendation: Do not use LastPass. If you are currently using it, migrate immediately.

ETH Zurich Vulnerabilities (February 2026)

Researchers from ETH Zurich's Applied Cryptography Group published findings on 25–27 vulnerabilities across Bitwarden, LastPass, and Dashlane. Key context:

• The attack model assumes full server compromise — a very high bar that has never been achieved against a major password manager in the wild
• 1Password was included in the research and found to be the most secure, due to its Secret Key architecture
• Bitwarden and Dashlane have patched most issues; LastPass's response has been slower
• No evidence of exploitation in the wild

This research matters, but it shouldn't prompt you to abandon well-regarded managers. It should make you prefer managers with a strong architectural approach (1Password's Secret Key) or open-source code that can be audited externally.

9. What Changed Since 2025

A summary for readers of the original guide:

→ See the 2025 password managers guide for the full original coverage.

❓ Frequently Asked Questions