We hate to be the bearer of bad news, but LastPass, one of the most popular password managers, has been hacked!
LastPass made the announcement in this blog post:
“We want to notify our community that on Friday, our team discovered and blocked suspicious activity on our network. In our investigation, we have found no evidence that encrypted user vault data was taken, nor that LastPass user accounts were accessed. The investigation has shown, however, that LastPass account email addresses, password reminders, server per user salts, and authentication hashes were compromised.”
“However, if you have reused your master password on any other website, you should replace the passwords on those other websites.”
You heard ’em folks. Change your master password immediately! Better safe than hacked!
For more information, here are some news articles about the incident:
Latest posts by The Security Awareness Company (see all)
- Venmo security: Peer-to-peer payment apps are riskier than you think - November 26, 2019
- Security Awareness: Get Management to Buy In - October 15, 2019
- The Ultimate Guide to a Successful Security Awareness Program (SAP) - October 10, 2019