Pages:
Author

Topic: Hackers stolen Last Pass users passwords and sensitivw information - page 2. (Read 346 times)

hero member
Activity: 1834
Merit: 879
Rollbit.com ⚔️Crypto Futures
I remember seeing this story make headlines 2-3 months back and lastpass themselves weren't sure of how much data was stolen  Roll Eyes but am certain the effects of such a hack will be felt after 6months or so when the black market makes use of this data.
 I guess changing passwords on a regular basis would be a good counter measure to such or better yet go for open-source alternatives.
hero member
Activity: 1456
Merit: 940
🇺🇦 Glory to Ukraine!
As for the password manager, I would suggest an open source solution and one that does not store data on a centralized server. When choosing an open-source password manager, it's important to do your own research and compare the features and reviews of different options to find the one that's right for you. Here are a few options you may want to consider:

KeePass
Bitwarden
Password Safe
KeepassXC
legendary
Activity: 2352
Merit: 6089
bitcoindata.science
Quote
Password manager giant LastPass has confirmed that cybercriminals stole its customers’ encrypted password vaults, which store its customers’ passwords and other secrets, in a data breach earlier this year.

In an updated blog post on its disclosure, LastPass CEO Karim Toubba said the intruders took a copy of a backup of customer vault data by using cloud storage keys stolen from a LastPass employee. The cache of customer password vaults is stored in a “proprietary binary format” that contains both unencrypted and encrypted vault data, but technical and security details of this proprietary format weren’t specified. The unencrypted data includes vault-stored web addresses. It’s not clear how recent the stolen backups are.

LastPass said customers’ password vaults are encrypted and can only be unlocked with the customers’ master password, which is only known to the customer. But the company warned that the cybercriminals behind the intrusion “may attempt to use brute force to guess your master password and decrypt the copies of vault data they took.”

Toubba said that the cybercriminals also took vast reams of customer data, including names, email addresses, phone numbers and some billing information.
https://techcrunch.com/2022/12/22/lastpass-customer-password-vaults-stolen/

We should never trust our data to those big corporations.


Hackers got Employees keys  , customers passwords, name, billing information,  email..
What the fuck! This is a password manager. How does this kind of shit happens?
And why do people share so much sensitive information (such as billing information) with a password manager?

Password managers are a must today. You should always use a different password , and a strong one  and we can't remind all of them
But the problem is which pass manager to choose.

Keypass and bitwarden are probably the best.

Protecting our passwords is similar to protecting our bitcoin and our exchange accounts.
Pages:
Jump to: