Tuesday, 16 June 2015

LastPass has been hacked — change your master password now

LastPass is a password manager — many people have so many passwords, they can’t remember them all. Password managers exist to store passwords in encrypted form. To access, the user needs a master password. That’s one more password, but with that one password, the user has access to all of his/her other passwords.

LastPass is widely regarded as one of the better ones.

One problem — LastPass has been hacked, so, time for users to update master passwords.

Redmond Pie:
http://www.redmondpie.com/psa-lastpass-was-hacked-change-your-master-password-right-now/

Engadget:
http://www.engadget.com/2015/06/15/lastpass-hacked/

Lifehacker
http://lifehacker.com/lastpass-hacked-time-to-change-your-master-password-1711463571

What LastPass has to say about it:
https://blog.lastpass.com/2015/06/lastpass-security-notice.html/ / security vitally important even more important store more more our lives online banking information photos our kids stored kept in the cloud our data information kept behind secure passwords passwords kept LastPass 1Password highly recommended users LastPass customers suffered data breach reset their passwords precaution LastPass confident hackers gain access any information user’s account LastPass account email addresses password reminders authentication hashes users should change LastPass master password as soon as possible time to panic confident encryption measures sufficient protect vast majority of users LastPass strengthens strong password authentication hash random salt 100,000 rounds of server-side PBKDF2-SHA256 rounds performed client-side additional strengthening makes it difficult attack stolen hashes significant speed LastPass user data passwords usernames sites stored accessible at any time reset your LastPass master password best course of action use that same password elsewhere change that password as well security notice LastPass website /