![]() The password management company would also perform a password reset for all affected accounts to prevent any breached passwords from being used. While it may be possible to decrypt those passwords, if the hacker can insert themselves into the decryption process (through malware for instance) it is likely to be a long process, which would give users plenty of time to log in and set a new password. That also means that if a password manager is hacked, the hacker will only be able to access encrypted passwords. The vault can only be accessed (and decrypted) if the user supplies their master password. Password managers encrypt users’ passwords and store them securely in a password vault. If you use a password manager, all of your passwords are stored in one place, so if the password manager is hacked, all of your passwords could potentially be stolen. LastPass did not perform a password reset for users’ passwords, so the company is confident that no passwords have been breached. Data was stolen, but the theft was limited to source code and some technical documentation. LastPass said the latest hack only affected its development environment, and users’ passwords were not accessed. ![]() It is important to clarify a few points about the recent LastPass hacking incident. If password managers can be hacked, you may be asking yourself questions such as what happens if my password manager is hacked? Should I be using a password manager? Do I need to change all my passwords? These are all perfectly reasonable questions that it is worth addressing in light of the recent news. ![]() If you follow the news, or if you use the LastPass password manager, you will no doubt be aware that LastPass was hacked this month, and it is not the first time that has happened at LastPass, as it was also hacked back in 2015. ![]()
0 Comments
Leave a Reply. |