![]() They got themselves into this almighty mess, and it is going to take a PR miracle to help them recover. I’m not going to make LastPass’ year any worse by pontificating about the how and why of these data breaches. My best password manager recommendation – house rules LastPass has been quick to point out that, in order to access the encrypted data, the hackers would need to use brute force – a task which Toubba suggests would be “extremely difficult”, given the hashing and encryption methods used. ![]() They also managed to steal a backup of a customer data vault, which includes both encrypted and unencrypted data, including website URLs, website usernames, and… yes, passwords. Once inside the storage volumes, the hackers grabbed “basic customer account information” that included names, billing addresses, email addresses, telephone numbers, and the IP addresses used by customers to access the LastPass service. We have now moved from ‘sweat-inducing’ to ‘where’s the nearest toilet?’. The unauthorised party has since used some of the source code and technical information to compromise LastPass once more, this time obtaining credentials which enabled them to access and decrypt some of the company’s storage volumes. Now, we know there was rather more to the intentions behind the incident than initially met the eye. ![]() ![]() You wouldn’t want unauthorised people anywhere near your company’s data and internal tools – no matter the industry within which you reside – but when you’re in the business of keeping humanity’s most important data safe, it’s another matter entirely.īack then, Toubba told us that no customer data was accessed during the breach. This is already sweat-inducing if you’re part of the LastPass top brass (or that of its parent company, GoTo). In August 2022, someone (or a bunch of people – who knows) managed to gain access to parts of the LastPass development environment. I’ll get to that in a moment, but first, let’s quickly run over LastPass’ dreadful end to 2022. There are many alternatives to LastPass, and from the limited time I’ve spent recommending my own favourite on these pages, I know that conversations surrounding password security can quickly turn inexplicably unsavoury. Although, arguably, if you’re in that position, I’d suggest your first port of call would be a major overhaul of all your saved passwords – regardless of how annoying that task is. Referring to a data breach in August when an unauthorised party gained access to the LastPass development environment, LastPass CEO, Karim Toubba, swapped Christmas wishes for an admission that the plot has thickened – in the worst possible way.Īs a result of this, I’d suspect that many people are now looking for an alternative to LastPass. On 22nd December, the password management company had no choice but to publish the blog post no company wants to publish. You can get the 1Password app on your Windows, Linux, macOS, and Chrome OS devices.It’s not been a particularly merry Christmas for LastPass, has it? As for apps, LastPass is available on the Play Store and the App Store. LastPass has official app releases on almost all platforms.ĭirectly from their website, you can install the LastPass desktop app for Windows, macOS, and Linux, along with browser extensions for Firefox, Google Chrome, Microsoft Edge, and Opera. The same applies to browser extensions: you can install unofficial but trusted KeePass plugins on Firefox, Google Chrome, and Opera, to name a few. You can download KeePass directly on your Windows, macOS, Linux, and BSD devices.Īs for phones and tablets, KeePass doesn’t have official app releases, but its website includes countless verified user contributions, allowing it to work on Android, iOS, Windows Phone, and even Blackberry. Device support is one of the most important aspects of picking out new software, especially a password manager that you’d need on almost all of them.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |