I received an email this morning warning of an attack to
their security. They advise ...
"Dear LastPass User,
We wanted to alert you that, recently, our team discovered and immediately blocked suspicious activity on our network. No encrypted user vault data was taken, however other data, including email addresses and password reminders, was compromised.
We are confident that the encryption algorithms we use will sufficiently protect our users. To further ensure your security, we are requiring verification by email when logging in from a new device or IP address, and will be prompting users to update their master passwords.
We apologize for the inconvenience, but ultimately we believe this will better protect LastPass users. Thank you for your understanding, and for using LastPass. "
You can read more about it on here. It gets a bit technical in the middle but the
advice is worth listening to.
So Off you go! Get it
changed. I'll wait.
Even if you don't
use LastPass it is good practice to change the master password for any password
manager on a regular basis. I was
actually surprised (and rather mortified!) how long I had had my previous
master password!
Password managers are a good idea. If your passwords are done correctly, (ie
random strings of numbers, letters and symbols), they are hard to remember and
trying to remember the many random passwords that we need during any one day is
enough to make you write them down! In
addition to that we have PIN codes for debit and credit cards and on top of
this, building security codes.
What happened to the days of just remembering your home
phone number, that of your best mate and a reliable cab company!
If you don't fancy using LastPass there are many others out
there.
PC Mag article about password managers. (April 14)
TechRadar another article about password managers (Feb 15)
No comments:
Post a Comment