If you use LastPass, please read this!

from JoeUser Forums

 

LastPass has noted suspicious activity on its network.

“We want to notify our community that on Friday, our team discovered and blocked suspicious activity on our network. In our investigation, we have found no evidence that encrypted user vault data was taken, nor that LastPass user accounts were accessed. The investigation has shown, however, that LastPass account email addresses, password reminders, server per user salts, and authentication hashes were compromised.

We are requiring that all users who are logging in from a new device or IP address first verify their account by email, unless you have multifactor authentication enabled. As an added precaution, we will also be prompting users to update their master password.” LastPass

I suggest you do as they instruct:

“If you have a weak master password or if you have reused your master password on any other website, please update it immediately. Then replace the passwords on those other websites.” – ibid

 

Source:

https://blog.lastpass.com/2015/06/lastpass-security-notice.html/

34,767 views 10 replies
Reply #1 from JoeUser Forums Top

Awesome. :sick:

Reply #2 from JoeUser Forums Top

Is it only me that sees a fundamental flaw in having some outside entity responsible for/involved with your password security?

Writing them all down on a post-it note and blu-tac-ing it to your monitor is inherently safer...;p  

Galactic Civilizations III
Reply #3 from WinCustomize Forums Top

Quoting Jafo, reply 2

Is it only me that sees a fundamental flaw in having some outside entity responsible for/involved with your password security?

Writing them all down on a post-it note and blu-tac-ing it to your monitor is inherently safer...;P   
End of Jafo's quote

No, it's not only you.  I think the idea is crazy, especially after several people I know had issues with Dashlane.  Nope, mit's not for me.

As for blu-tacking p/words to the monitor, well I don't do that, either... like what if somebody comes in while my puter is unattended and logs into porn sites as me?

The safest way to protect your passwords is to memorise them and keep 'em in your head.... though torture has been known to get people to divulge things they would otherwise not.  Thing is, when you're an old fart like me, memorising shit is one thing.... retrieving that info is another.  Hence I generally write all my passwords on a sheet of A4 and keep it in my filing cabinet.... when I can remember where that is.

:-"

Reply #4 from Elemental Forums Top

Quoting Jafo, reply 2

Is it only me that sees a fundamental flaw in having some outside entity responsible for/involved with your password security?

Writing them all down on a post-it note and blu-tac-ing it to your monitor is inherently safer...;P   
End of Jafo's quote

 

and more difficult for web bots to 'find.'

 

Reply #5 from WinCustomize Forums Top

I use pass phrases like blue is a nice sound (without spaces). They don't make sense and are easy to remember, hard to guess.

Reply #6 from WinCustomize Forums Top

Quoting JoDa, reply 5

I use pass phrases like blue is a nice sound (without spaces). They don't make sense and are easy to remember, hard to guess.
End of JoDa's quote

So you're saying "fechoffverminscammers" would be a good un? :grin:

Reply #7 from WinCustomize Forums Top
Quoting starkers, reply 6
Quoting JoDa,
reply 5

I use pass phrases like blue is a nice sound (without spaces). They don't make sense and are easy to remember, hard to guess.



So you're saying "fechoffverminscammers" would be a good un? :grin:

End of starkers's quote

mycommonpasswordispassword

Reply #8 from WinCustomize Forums Top

Or then there's: "trojanonboardopenit&urfucked" :grin:

Reply #9 from Elemental Forums Top

Do you use and then memorize a different pass phrase for every one of the 100 sites you visit?  If so you're both smarter and wiser than me.  Password safe's are a good thing, using an online one adds inherit risk, but is still better than reusing the same password/phrase which is what most people do.