home.social

#lastpasshack — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #lastpasshack, aggregated by home.social.

  1. LastPass Data Breach — 1.6 Million Users Exposed By Security Failure

    LastPass fined $1.6 million over insufficient security measures. SOPA Images/LightRocket via Getty Images Updated December 14 with details…
    #NewsBeep #News #Business #2022LastPassDataBreach #GB #ICOFine #LastPassBreach #LastPassfined£1.2Million #LastPassHack #LastPassSecurity #password #PasswordmanagerBreach #Passwordsecurityyhack #UK #UnitedKingdom
    newsbeep.com/uk/315910/

  2. @Haste

    Will this be the end of #Lastpass? Is anyone still using it? I was actually one of those hardcore fans that paid when they changed the pricing-tiers, but due to it being closed source and me still seeing ads showing that I was tracked, I realised it was them so a switched to #BitWarden. Since then, all #ads are irrelevant to me.

    #tech #infosec #security #hacking #hack #Lastpass #LastpassHack #Bitwarden #PasswordManager

  3. @Techmeme

    techmeme.com/230227/p30#a23022

    It was through their home computer and a keylogger due to a known remote code execution exploit.

    Again, very weird how they knew to target this person and where. These guys were watched.

    #godaddy #Lastpass #lastpasshack #Hack #hacking #breach

  4. @Techmeme

    bleepingcomputer.com/news/secu

    "As only four LastPass DevOps engineers had access to these decryption keys, the threat actor targeted one of the engineers. Ultimately, the hackers successfully installed a keylogger on the employee's device by exploiting a remote code execution vulnerability in a third-party media software package."

    It's crazy how they knew to target these 4 individuals. I would love to know how they figured it out. Both this and the #GoDaddy hacks were very intricate

    #Lastpass #LastpassHack #Hack #Hacking #Breach

  5. After being a #LastPass user for around 10 years, I've shifted over to #1password due to the shameful way they handled the #LastPassHack and it's superior product by far. Should have done this ages ago.

  6. Straks Last Pass vervangen door Bitwarden. De laatste info over LP is toch niet zo geruststellend. #lastpasshack

  7. Been working with the #LastPass tool that Steve Gibson publicized on the latest #SecurityNow podcast (episode 905). But ran into an issue with shared folders, and covered it in this blog post.

    boojit.com/blog/2023-01-13.1+L

    #LastPassBreach #LastPassHack

  8. What sucks, as a security student and advocate, I tell people that using any password manager is better than nothing... now something like this happens and a lot of us have to explain and re-assure people...

    A lot of security people might be taking a hit in their credibility when things like this happen and have to deal with people who are skeptics/doubters to begin with...

    #lastpass #LastPassHack #LastPassBreach #cybersecuritynews
    youtube.com/watch?v=SoyYpq4y6X

  9. @Mikal Its not so much _your_ password that counts when the DJI data vault gets hacked despite their glib assurances of "security", b/c then all you can do is reset your pwd again (and again). Assuming they detected the breach.

    If you have not already done it, use HaveIBeenPwned.com to see where your emails/phones show up in hacks.

    I was reading about the #LastPass #LastPassBreach #LastPassHack and decided since my vault had been exposed, even tho' encrypted, that since LastPass didn;t reveal all details, they aren't to be trusted, so I switched pw managers to another popular one.

  10. LastPass soll bei Bekanntgabe des Sicherheitslecks gelogen haben. Ich habe nicht ohne Grund meinen Freunden und Bekannten immer gesagt einen offline Safe zu nutzen. Wer nicht hören will muß eben fühlen. #LastPassHack #datenschutz

    winfuture.de/news,133810.html

  11. Hey @Bitwarden, As a user, I want to know that kind a steps has been taken to prevent a data breach similar to LastPass had?

    #Bitwarden #lastpasshack

  12. I'm not qualified to comment on security, but:

    If you want a truly well thought through, feature-packed, cleanly designed password manager and don't mind paying for it, #1Password is worth it. What I use personally.

    If you want all the basic boxes ticked in a workmanlike way, #Bitwarden is cheap, fully functional, and actively developed. What we use at work.

    #LastPass #LastPassHack #LastPassBreach #LastPassBreach22 #PasswordManager #PasswordManagers

  13. I'm not qualified to comment on security, but:

    If you want a truly well thought through, feature-packed, cleanly designed password manager and don't mind paying for it, #1Password is worth it. What I use personally.

    If you want all the basic boxes ticked in a workmanlike way, #Bitwarden is cheap, fully functional, and actively developed. What we use at work.

    #LastPass #LastPassHack #LastPassBreach #LastPassBreach22 #PasswordManager #PasswordManagers

  14. I'm not qualified to comment on security, but:

    If you want a truly well thought through, feature-packed, cleanly designed password manager and don't mind paying for it, #1Password is worth it. What I use personally.

    If you want all the basic boxes ticked in a workmanlike way, #Bitwarden is cheap, fully functional, and actively developed. What we use at work.

    #LastPass #LastPassHack #LastPassBreach #LastPassBreach22 #PasswordManager #PasswordManagers

  15. I'm not qualified to comment on security, but:

    If you want a truly well thought through, feature-packed, cleanly designed password manager and don't mind paying for it, #1Password is worth it. What I use personally.

    If you want all the basic boxes ticked in a workmanlike way, #Bitwarden is cheap, fully functional, and actively developed. What we use at work.

    #LastPass #LastPassHack #LastPassBreach #LastPassBreach22 #PasswordManager #PasswordManagers

  16. I happen to have tested all of the major online password managers, more than once over the years. Mostly for work.

    If you're considering ditching #LastPass because they have had (another) security breach, also consider that the LastPass UI is also comparatively bad. Like, really junky. #LastPassHack #LastPassBreach

  17. CW: Passphrases vs passwords: insight and how to optimize

    "Problems With Passphrases
    To say it one more time: Your passphrases need to be randomly generated! (As well as your passwords, of course.) Do not generate your own “good” passphrase by just looking around in the room you are sitting in and concatenating the things you see to generate a passphrase."
    SOURCE: weberblog.net/password-strengt

    #password #passphrase #passwords #passwordmanager #lastpass #LastpassHack #infosec

  18. The #lastpasshack debacle is another reminder that it's more secure, better for the environment, and more private to run native apps locally. @keepassxc + SyncThing will do the same thing, faster, and free of charge, without a single line of proprietary code.

  19. "Forbes is the self consciousness of the bourgeois class" - TGoTJ

    Major #password manager - #HACKED! I stayed up late last night changing passwords to "GFY" and then deleting their entries in lastpass. Because I migrated to #bitwarden already, but did not entirely delete my #lastpass

    forbes.com/sites/daveywinder/2

    #LastPassBreach #lastpasshack

  20. I would suggest to update every account password which had information stored in

  21. ✨ LastPass users: Your info and password vault data are now in hackers’ hands

    👉 Be extra alert for phishing emails and phone calls purportedly from LastPass or others

    👉 "would take millions of years to guess your master password using generally-available password-cracking technology." Quote from the LastPass 🤔

    arstechnica.com/information-te

    blog.lastpass.com/2022/12/noti

    #infosec #LastPassHack #lastpass #lastpassbreach22 #hackingincidents #threatintel

  22. ✨ LastPass users: Your info and password vault data are now in hackers’ hands

    👉 Be extra alert for phishing emails and phone calls purportedly from LastPass or others

    👉 "would take millions of years to guess your master password using generally-available password-cracking technology." Quote from the LastPass 🤔

    arstechnica.com/information-te

    blog.lastpass.com/2022/12/noti

    #infosec #LastPassHack #lastpass #lastpassbreach22 #hackingincidents #threatintel

  23. ✨ LastPass users: Your info and password vault data are now in hackers’ hands

    👉 Be extra alert for phishing emails and phone calls purportedly from LastPass or others

    👉 "would take millions of years to guess your master password using generally-available password-cracking technology." Quote from the LastPass 🤔

    arstechnica.com/information-te

    blog.lastpass.com/2022/12/noti

    #infosec #LastPassHack #lastpass #lastpassbreach22 #hackingincidents #threatintel

  24. ✨ LastPass users: Your info and password vault data are now in hackers’ hands

    👉 Be extra alert for phishing emails and phone calls purportedly from LastPass or others

    👉 "would take millions of years to guess your master password using generally-available password-cracking technology." Quote from the LastPass 🤔

    arstechnica.com/information-te

    blog.lastpass.com/2022/12/noti

    #infosec #LastPassHack #lastpass #lastpassbreach22 #hackingincidents #threatintel

  25. ✨ LastPass users: Your info and password vault data are now in hackers’ hands

    👉 Be extra alert for phishing emails and phone calls purportedly from LastPass or others

    👉 "would take millions of years to guess your master password using generally-available password-cracking technology." Quote from the LastPass 🤔

    arstechnica.com/information-te

    blog.lastpass.com/2022/12/noti

    #infosec #LastPassHack #lastpass #lastpassbreach22 #hackingincidents #threatintel