-
There are the worst hacks of 2022.
LastPass has said that an employee of its US-based rival Verge accessed a cloud storage service in August 2012 which was later used by an unauthorised person to target the employee with access to a third-party storage service. The vault backup wasn’t compromised initially, but LastPass said that the threat actor used information from that…
-
It’s time to stop using LastPass.
LastPass’ claim that it takes a million years to crack a master password is “highly misleading”, security firm 1Password’s principal security architect Jeffrey Goldberg said. He added that LastPass’ statistic appears to assume a 12 character, randomly generated password. Goldberg further said that “Passwords created by humans come nowhere near meeting that requirement”.
-
We just heard of the fact that LastPass password vaults have been stolen.
LastPass on Monday said that it was hit by a security attack that exposed some of its password data, including username and password. LastPass added that the attacker was able to copy the backup of customer vault data from the encrypted storage container. Passwords are still secured by the account’s master password, LastPass said.