One of the most popular password security companies just admitted it was hacked http://www.businessinsider.com/password-security-app-lastpass-admits-it-was-hacked-2015-6
"That's amazing! I've got the same combination on my luggage!"Reporter: "Sir, how was Lastpass hacked?"
Lastpass Preident: "Our mainframe password was '1234'."
"That's amazing! I've got the same combination on my luggage!"
Nice Spaceballs reference!"That's amazing! I've got the same combination on my luggage!"
I wondered if anyone would get that! Best movie Ever!Nice Spaceballs reference!
I still trust lastpass. That being said, I changed my master password yesterday just in case.
Apparently you're vulnerable if you use a relatively simple master password.
Agreed and this is why I opted for 1Password over Lastpass.At least 1Password keeps your files local.
Agreed and this is why I opted for 1Password over Lastpass.
The trouble for people is that if you do what most of us fall into, using the same password across different sites, then that master password may actually compromise other locations.
I haven't changed my master password, but I did finally add multi-factor using Google Authenticator. I'd been meaning to do it and I was already using 2-factor on my other important accounts, but just hadn't gotten around to understanding Google Authenticator and 2-factor with LastPass. Here is one article, but the LastPass and Google help pages were what I used to walk me through it. http://www.zdnet.com/article/lastpa...ortance-of-using-multi-factor-authentication/I still trust lastpass. That being said, I changed my master password yesterday just in case.
Agreed, the keys to your kingdom are in one place and you're relying on another entity to protect them. I'm not willing to risk my data, and security.Why anyone would use a password manager that stores all your passwords on their servers is beyond me.
Exactly! If something happened to their servers (natural disaster, terrorist action, etc.), how do the affected folks obtain their passwords? This breach is a perfect example of why one should never allow their passwords to be controlled by a others. And, whether you want to believe it or not, if you passwords are stored on someone else's server, those passwords are not under your complete control. I find it better to use a password manager that keeps passwords local.Agreed, the keys to your kingdom are in one place and you're relying on another entity to protect them. I'm not willing to risk my data, and security.
I find it better to use a password manager that keeps passwords local.
Having them strongly encrypted on a server makes better sense than plain-text locally IMHO but as they are having to warn users with weak passwords to change them clearly some have used a weak link, those individuals are likely to have weak links in whatever security mechanism they use.
and if natural disaster or hardware failure affects the local machine?
A solid backup plan will mitigate and lower the risks. For instance, I backup my computer on a portable drive and I take that portable drive to my office. So in the event of a natural disaster that destroys my home and computer my data is safe.and if natural disaster or hardware failure affects the local machine?