{"id":531126,"date":"2022-12-23T18:42:33","date_gmt":"2022-12-23T15:42:33","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/you-should-stop-using-lastpass\/"},"modified":"2022-12-23T18:42:33","modified_gmt":"2022-12-23T15:42:33","slug":"you-should-stop-using-lastpass","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/you-should-stop-using-lastpass\/","title":{"rendered":"#You Should Stop Using LastPass"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a2966d133d8c\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a2966d133d8c\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-1'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/you-should-stop-using-lastpass\/#%E2%80%9CYou_Should_Stop_Using_LastPass%E2%80%9D\" >&#8220;You Should Stop Using LastPass&#8221;<\/a><\/li><\/ul><\/nav><\/div>\n<h1><span class=\"ez-toc-section\" id=\"%E2%80%9CYou_Should_Stop_Using_LastPass%E2%80%9D\"><\/span>&#8220;You Should Stop Using LastPass&#8221;<span class=\"ez-toc-section-end\"><\/span><\/h1>\n<div>\n<figure style=\"width: 1200px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"type:primaryImage size-full wp-image-852065\" data-pagespeed-no-defer=\"\" src=\"https:\/\/www.howtogeek.com\/wp-content\/uploads\/2022\/12\/LastPass-1.jpg?width=1198&amp;trim=1,1&amp;bg-color=000&amp;pad=1,1\" alt=\"LastPass on multiple devices\" width=\"1200\" height=\"675\"\/><figcaption class=\"wp-caption-text\"><span class=\"type:primaryImage imagecredit\">LastPass<\/span><\/figcaption><\/figure>\n<p>LastPass used to be one of the best password managers, but more recently, its reputation has taken a hit from multiple security breaches. Now the company has confirmed the last one was <em>really<\/em> bad.<\/p>\n<p>LastPass suffered a security breach back in August, when a hacker gained access to development environments and was able to steal source code and other proprietary information. Later in December, LastPass confirmed a hacker was able to use that data to \u201cgain access to certain elements of our customers\u2019 information.\u201d The company didn\u2019t clarify what \u201ccertain elements\u201d meant, until now.<\/p>\n<p>LastPass just disclosed the full scope of the attack, following an \u201congoing investigation.\u201d The hacker was able to access a cloud storage environment using data from the August security breach, which included \u201cbasic customer account information and related metadata including company names, end-user names, billing addresses, email addresses, telephone numbers, and the IP addresses from which customers were accessing the LastPass service.\u201d Credit card information was <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a>arently not accessed.<\/p>\n<p>The worst part is that the hacker successfully copied vault data from LastPass, though the company called it \u201ca backup,\u201d so it\u2019s not clear how old the data is. The company claims the actual passwords are still safe, because they use\u00a0256-bit AES encryption based on a person\u2019s master password. However, if someone\u2019s master password can be obtained (for example, with a\u00a0phishing email\u00a0mimicking a LastPass login page), it could be possible to unlock the encrypted data and see all of someone\u2019s passwords.<\/p>\n<p>Even without the master password, the leaked data could be damaging for some LastPass users. Names and billing addresses can be used in more attacks, and the website addresses for stored passwords were not encrypted. Someone with the leaked data would be able to see all the websites that were associated with passwords, then use that for more targeted phishing. For example, if someone has a password for Bank of America\u2019s website, they might have an account there, and would be an excellent target for phishing emails that look like account alerts from the bank.<\/p>\n<p>This is just about the worst possible security incident imaginable for a password manager like LastPass \u2014 nearly all data in the company\u2019s possession has been copied. Client-side encryption saved every password from being stolen, but as previously mentioned, all it takes is a weak master password or a phishing attack to unlock that data for an account. That, along with a <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/furry.engineer\/@soatok\/109560736140669727\">poor track record of responding to security problems<\/a> and multiple other recent breaches, is a good justification to stop using LastPass.<\/p>\n<p>If you do use LastPass, you should change your master password as soon as possible, and be on the lookout for sketchy-looking emails for the coming weeks and months. You may also want to consider changing every password stored in LastPass \u2014 hackers now (probably) have that data too, they just can\u2019t unlock it right now.<\/p>\n<p><small>Source: <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/blog.lastpass.com\/2022\/12\/notice-of-recent-security-incident\/\">LastPass<\/a><\/small><\/p>\n<\/div>\n<p><script>\n setTimeout(function(){\n  !function(f,b,e,v,n,t,s)\n  {if(f.fbq)return;n=f.fbq=function(){n.callMethod?\n  n.callMethod.apply(n,arguments):n.queue.push(arguments)};\n  if(!f._fbq)f._fbq=n;n.push=n;n.loaded=!0;n.version='2.0';\n  n.queue=[];t=b.createElement(e);t.async=!0;\n  t.src=v;s=b.getElementsByTagName(e)[0];\n  s.parentNode.insertBefore(t,s) } (window, document,'script',\n  'https:\/\/connect.facebook.net\/en_US\/fbevents.js');\n   fbq('init', '335401813750447');\n   fbq('track', 'PageView');\n  },3000);\n<\/script><\/p>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong>\n<\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more like this article, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/technology\/\" target=\"_blank\" rel=\"noopener\">Technology category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/www.howtogeek.com\/856828\/you-should-stop-using-lastpass\/\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;You Should Stop Using LastPass&#8221; LastPass LastPass used to be one of the best password managers, but more recently, its reputation has taken a hit from multiple security breaches. Now the company has confirmed the last one was really bad. LastPass suffered a security breach back in August, when a hacker gained access to development&#8230;<\/p>\n","protected":false},"author":1,"featured_media":531127,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.howtogeek.com\/wp-content\/uploads\/2022\/12\/LastPass-1.jpg?height=200p&trim=2,2,2,2","fifu_image_alt":"","footnotes":""},"categories":[18],"tags":[],"class_list":["post-531126","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/531126","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=531126"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/531126\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/531127"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=531126"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=531126"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=531126"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}