Back to Blog
Last pass fee5/24/2023 ![]() "Unfortunately, not everyone picks a master password that's immune to brute forcing."Īccording to LastPass, the incident has accelerated its decision to implement stronger authentication measures. The reason that LastPass is requiring everyone to change their master password is because of the potential for the intruders to use brute-force methods to guess at weaker master passwords, the company noted. ![]() In its blog post, LastPass noted that the possible compromise is unlikely to affect anyone with a "strong, non-dictionary"-based master password or pass phrase. With services such as LastPass, users need to only remember one master password for logging into the service. Users tend to use the same passwords for multiple sites because of this worry. Such services are designed to let people create strong and unique passwords for each site they use without having to worry about remembering each one of them. ![]() The company offers a free service as well as a fee-based service. The service then automatically fills in the information when the user visits a site that requires the information. LastPass is a service that lets users store their usernames, passwords and form-fill data online. "We also know that the amount of data taken isn't remotely enough to have pulled many users encrypted data blob," LastPass noted. A randomly generated key is added to the password before it is obscured, or hashed. Salting is a technique that is used to make it harder for people to misuse stolen passwords. The amount of data that was transferred out of its system is big enough to have contained people's email addresses, their salted password hashes and the server salt, LastPass said. Because LastPass has been unable to account for this anomaly, it has decided to assume that the database has been compromised.
0 Comments
Read More
Leave a Reply. |