We've all heard the advice: use a password manager. And it is still one of the most important things you can do.

But a study from ETH Zurich (one of Europe's top research universities) found some real problems when testing how popular password managers protect your data.

These tools promise that even if their servers get hacked, nobody can read your passwords. But the researchers found 25 different ways that promise didn't hold up.

Before you panic...

This is how security is supposed to work. Independent researchers test products, find weaknesses, report them, and companies fix them.

That happened here. Most have been patched, and others are being rolled out soon.

This was a controlled test, not a breach. Your passwords haven't been compromised. And now they're even safer!

What actually matters is having a plan to review and update regularly.

• Is your password manager up to date?
• Are you using two factor authentication?
• When was the last time you reviewed who has access to your most important accounts?

If you don't know, it's time for a checkup.

Security isn't something you do once. It's something you maintain, just like the rest of your business.