Thursday, May 5, 2011

Possible Security Breach At LastPass

Image representing LastPass as depicted in Cru...Users who manage and store their passwords through password management service LastPass are being forced to change their master passwords after the site noticed an issue this week that raised the spectre of a possible security breach.

LastPass wrote on their blog yesterday that because they can't account for the anomaly they detected in one of the databases, the company made the decision to assume the worst that some of its data had been hacked, even though they say you shouldn't be impacted by this issue if you have a strong, non-dictionary-based password.

LastPass hasn't identified a specific breach, it's erring on the site of caution by now forcing its members to change their master passwords.

LastPass let users create and manage passwords to more easily log in to the vast array of secure Web sites they visit.
Those passwords can be stored on a PC or mobile device as well as online. As one means of protection, LastPass typically urge users to create a single complex master password that can unlock the key to accessing their passwords.
Of course, if that master password is compromised, hackers potentially can gain access to all the individual passwords, one reason why these companies advise users to employ complex master passwords.

In the meantime, LastPass have moved services to other servers for now. They also compared the code on the live servers with code from their repositories to make sure it was not tampered with.
The company is also enhancing the encryption used to protect its data.

12 commentaires:

Daniel Smotherman said...

Crazy stuff

AllenTesch said...

Is that...irony?

Skeng said...

First PSN and now this. Damn

logo mess said...

poor guys :) never store your password =P
flowed

Cyl Yoann said...

... hacking ...

Anonymous said...

I saw this earlier. Good thing I use 1Password.

Daniel said...

This is very disturbing, they servers are saturated and i can't reset my master password.

Blogging Skater said...

reminds me of sony

Ponderer said...

Haha that is why you don't store your passwords with another password!

Sety said...

yup, just like sony

Nom de Plume said...

I always was sceptical about these sorts of things!

fit4life said...

so many security breaches now'a'days. 2012!!!!!!!

Post a Comment