LastPass Denies That Master Passwords Have Been Compromised

[Tsing]

Image: LastPass



LastPass is a popular cloud-based password manager that allows users to quickly generate complex passwords for sites and manage them with a single, master password.



Alarmingly, a growing number of users on the Hacker News forum are claiming that their master passwords for LastPass have been compromised. Many are receiving emails from the company about unauthorized login attempts, even by those who have kept their master passwords secure via alternative solutions such as KeePass.



“LastPass blocked a login attempt from Brazil (it wasn’t me),” reads a thread created by gregsadetsky that has garnered over 400 comments thus far. “According to an email I received from LastPass, this login was using the LastPass account’s master password. The email doesn’t look like it’s a phishing attempt.”



“What troubles me is that the master password was stored in a...

Continue reading...

 

[Zarathustra]

This is why you never trust anything cloud.

I love my Keepass

 

[DrezKill]

I don't use any password managers at all. I rely on my brain, and a text document that has clues for all my passwords for all my accounts. The clues are so cryptic that sometimes they don't even help me! So I'm not concerned about others figuring that sh1t out.

This is why you never trust anything cloud.

Yupz. The only thing I ever use cloud sh1t for is save data for games (IF that service is provided for free), and that's in addition to the local manual backups I make (unless I'm on an unmodded system that doesn't let me back up my saves - with those I'm just boned).