Bitcoin Forum>Other>Off-topic
Author

Topic: [BETANEWS]LastPass has serious flaw called 'LostPass' -- your passwords and mor (Read 347 times)

HITTI2
hero member
Activity: 563
Merit: 500
[BETANEWS]LastPass has serious flaw called 'LostPass' -- your passwords and mor
January 18, 2016, 01:44:00 AM
#4
Quote from: Boelens on January 18, 2016, 12:16:11 AM
Quote from: HITTI2 on January 17, 2016, 06:31:29 PM

I finally dumped last pass, I am now copying and pasting my passwords. Even if that helps. What other alternatives do we have not as in password managers but as to login?

Hopefuly you're not dumping it all into a notepad document lol, email it to yourself that way there's a password protecting it.
What happened to me is that I use multiple devices and lastpass was good at synchronizing between devices etc. I paid for a 2 year subscription too! To have lastpass on my android devices.

Now what I am doing is using dropbox for my password data base and the key file on my computer & Android  then + my password.

Using all apps:
Dropbox
Keepass2
keefox
keepass2android

Exported my lastpass>import through keepass as Lastpass.csv file creating my new keepass database.
Boelens
hero member
Activity: 672
Merit: 500
Re: [BETANEWS]LastPass has serious flaw called 'LostPass' -- your passwords and mor
January 18, 2016, 12:16:11 AM
#3
Quote from: HITTI2 on January 17, 2016, 06:31:29 PM

I finally dumped last pass, I am now copying and pasting my passwords. Even if that helps. What other alternatives do we have not as in password managers but as to login?

Hopefuly you're not dumping it all into a notepad document lol, email it to yourself that way there's a password protecting it.
Spoetnik
legendary
Activity: 1540
Merit: 1011
FUD Philanthropist™
Re: [BETANEWS]LastPass has serious flaw called 'LostPass' -- your passwords and mor
January 17, 2016, 08:32:38 PM
#2
I use Password Depot on Windows.. they might have a Linux version oi forget.
I also have tried out the Android one which is free an it works ok.
Hopefully my program is not in the news next hahah

also i chose it over Kaspersky because of Browser plugin updates are better.
And you can often just change the Plugin version number and it still works for new builds.

Anyway it has great features for windows.. i been using it for years since v6.xx

and.. if you want pirated versions can be found online too.
HITTI2
hero member
Activity: 563
Merit: 500
Re: [BETANEWS]LastPass has serious flaw called 'LostPass' -- your passwords and mor
January 17, 2016, 06:31:29 PM
#1
Quote
"I have discovered a phishing attack against LastPass that allows an attacker to steal a LastPass user's email, password, and even two-factor auth code, giving full access to all passwords and documents stored in LastPass. I call this attack LostPass. The code is available via Github. LostPass works because LastPass displays messages in the browser that attackers can fake. Users can't tell the difference between a fake LostPass message and the real thing because there is no difference. It's pixel-for-pixel the same notification and login screen", says Sean Cassidy, CTO, Praesidio.


Source

I finally dumped last pass, I am now copying and pasting my passwords. Even if that helps. What other alternatives do we have not as in password managers but as to login?
Bitcoin Forum>Other>Off-topic
Jump to: