Update:LastPass launches December 22nd New blog postFurther information regarding the leaked customer information can be found here. It states that account information such billing addresses, email address, end-user numbers, phone numbers, and IP addresses was obtained. Unencrypted data including website URLs and encrypted data like website usernames, passwords, secure notes, form-filled data was also leaked.
You can read the full explanation of the company’s actions and what’s next in its blog post. LastPass customers have the best protection by using a strong, random password that’s not been used elsewhere. You can also choose to change providers – we have Our roundup of the best password managersHe has other suggestions than LastPass that you might like to try.
The original December 1 story, which includes more background details about the leak, is available below.
LastPass has had a tough year. LastPass, the popular password manager, was launched in August. suffered a security breachAs the company’s developers environment was hacked. LastPass claimed that customers were not affected by the hacking, even though a portion of its source codes and technical information had been stolen.
Now, the company is facing a second related hack that affects customers. This includes she reported Wednesday on her blogLastPass recently detected unusual activity in a third party cloud storage service. A thorough investigation has so far revealed that the breach was caused in part by information gained during the August 2022 attack, and that “certain elements customer information” were accessed. As the investigation continues, more information is not available. LastPass claims that passwords of customers remain encrypted.
This news is troubling regardless of the service’s earning recommendations.Including oursYou can also use it every day by clicking here. LastPass has been the victim to hacks in the past. Notable incidents include: 2015 Unauthorized AccessUser account email addresses, password reminders and authentication hashes. Other security vulnerabilities include A security vulnerability in the 2017 browser extension, which allowed websites the ability to steal passwords. It was also discovered in 2019 by the same security researcher that discovered the 2017 version. Another vulnerability in the browser extensionThis allowed the last password to be leaked. The company even allowed connections to fumble, such as Security alert emailsIt is sent out to clients who were not affected by the credential stuffing attacks.
Premium password managers have not reported nearly as many incidents over time. If you so desire, you can easily switch to another one. You can also check the security of your LastPass account. This includes using strong passwords, enabling two-factor authentication, keeping an eye on authorized devices, and making sure it meets all best practices.
As annoying as this transparency might be, the main problem isn’t the concept of password managers. You can still use them as a crucial part of online security. Which makes it more comfortableIt is important to use it, even when there are security breaches. They are not to be lost.
Source link
[Denial of responsibility! reporterbyte.com is an automatic aggregator of the all world’s media. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials, please contact us by email – reporterbyte.com The content will be deleted within 24 hours.]
