• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

LastPass hacked. Maybe

Majic 7

Majic 7

Senior member
Getting notices from LastPass about problems connecting to server. Turns out they had some suspicious activity and are telling users to change their master password. Most secure passwords last. Their servers are overwhelmed at the moment, thus the errors. This is getting tiresome. I've had three notifications in the last couple of months about data bases being hacked and email accounts being compromised. I just started LastPass a few days ago because of all the things going on, now it may have been hacked.😱
 
Thanks for posting the link. I kinda freaked and forgot the blog post from LastPass.
 
Last edited:
This is exactly why I typically recommend PasswordSafe or other similar products that are installed locally for password management. See this thread for the points I raised last Nov.
 
So how compromised would the data be though? Would the masters be stored as something like a seeded SHA-512, which is used to encrypt the rest of your data? Or do they just encrypt/decrypt on the fly with the password you provide during login?

I'm curious how this kind of stuff works for sites which are known to be secure and smart about this stuff (or certainly are supposed to be), like banks, etc...

Did PSN store everything as weakly-hashed data, or (god forbid) plain text, like whatever dating site that was?
 
Last edited:
Majic 7 said:
Getting notices from LastPass about problems connecting to server. Turns out they had some suspicious activity and are telling users to change their master password. Most secure passwords last. Their servers are overwhelmed at the moment, thus the errors. This is getting tiresome. I've had three notifications in the last couple of months about data bases being hacked and email accounts being compromised. I just started LastPass a few days ago because of all the things going on, now it may have been hacked.😱
Click to expand...

Im not bothered they can steal my forum passwords what can they do troll around. I dont do secure business over the net.
 
Gooberlx2 said:
So how compromised would the data be though? Would the masters be stored as something like a seeded SHA-512, which is used to encrypt the rest of your data? Or do they just encrypt/decrypt on the fly with the password you provide during login?

I'm curious how this kind of stuff works for sites which are known to be secure and smart about this stuff (or certainly are supposed to be), like banks, etc...

Did PSN store everything as weakly-hashed data, or (god forbid) plain text, like whatever dating site that was?
Click to expand...

Using an evolved host-proof hosted solution, LastPass employs localized, government-level encryption (256-bit AES implemented in C++ and JavaScript) and local one-way salted hashes to give you complete security with the go-anywhere convenience of syncing through the cloud. All encrypting and decrypting happens on your computer - no one at LastPass can ever access your sensitive data. LastPass’ Security Challenge also allows you to identify weak account data and provides suggestions for significantly improving your online security.
http://helpdesk.lastpass.com/
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top