{"id":532437,"date":"2022-12-29T22:13:46","date_gmt":"2022-12-29T19:13:46","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/lastpass-slammed-over-hacked-password-security-claims-review-geek\/"},"modified":"2022-12-29T22:13:46","modified_gmt":"2022-12-29T19:13:46","slug":"lastpass-slammed-over-hacked-password-security-claims-review-geek","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/lastpass-slammed-over-hacked-password-security-claims-review-geek\/","title":{"rendered":"#LastPass Slammed Over Hacked Password Security Claims \u2013 Review Geek"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_85 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a3e2d81c43b0\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a3e2d81c43b0\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-1'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/lastpass-slammed-over-hacked-password-security-claims-review-geek\/#%E2%80%9CLastPass_Slammed_Over_Hacked_Password_Security_Claims_%E2%80%93_Review_Geek%E2%80%9D\" >&#8220;LastPass Slammed Over Hacked Password Security Claims \u2013 Review Geek&#8221;<\/a><\/li><\/ul><\/nav><\/div>\n<h1><span class=\"ez-toc-section\" id=\"%E2%80%9CLastPass_Slammed_Over_Hacked_Password_Security_Claims_%E2%80%93_Review_Geek%E2%80%9D\"><\/span>&#8220;LastPass Slammed Over Hacked Password Security Claims \u2013 Review Geek&#8221;<span class=\"ez-toc-section-end\"><\/span><\/h1>\n<div id=\"article-content-area\">\n<figure style=\"width: 1920px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"type:primaryImage size-full wp-image-106498\" data-pagespeed-no-defer=\"\" src=\"https:\/\/www.reviewgeek.com\/p\/uploads\/2021\/12\/09dd8c26-1.png?width=1200\" alt=\"A photo of LastPass running on a smartphone.\" width=\"1920\" height=\"1080\"\/><figcaption class=\"wp-caption-text\"><span class=\"type:primaryImage imagecredit\"><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.shutterstock.com\/image-photo\/lod-israel-july-8-2020-lastpass-1878395128\">Maor_Winetrob\/Shutterstock<\/a><\/span><\/figcaption><\/figure>\n<p>Password manager LastPass has been embroiled in a data-leak scandal, with each update worsening the situation. In its <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/blog.lastpass.com\/2022\/12\/notice-of-recent-security-incident\/\">most recent post<\/a>, the company assured users their passwords were safe so long as they followed LastPass\u2019s guidelines. Today, competitor 1Password released a scathing rebuttal.<\/p>\n<p>To summarize the data-breach scandal, back in August, LastPass informed users that it suffered a data breach, but that customer data and accounts were safe. However, at the beginning of December, the company admitted that the hackers were \u201cable to gain access to certain elements of customer information\u201d but didn\u2019t specify what kind of information that might be. And last week, the company revealed that the hackers obtained a \u201cbackup of customer vault data\u201d but that the information contained in the backup would be inaccessible if customers had a strong master password.<\/p>\n<p>Specifically, LastPass claimed that if users followed the best practices, it would take the hackers \u201cmillions of years\u201d to guess a master password.<\/p>\n<p>LastPass\u2019s competitor (and our top pick for password managers), 1Password, took issue with that claim. In a <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.anrdoezrs.net\/links\/100317643\/type\/am\/sid\/140925-xid-{xid}\/https:\/\/blog.1password.com\/not-in-a-million-years\/&amp;___trxnet=cj\">blog post<\/a>, the company\u2019s Principal Security Architect, Jeffrey Goldberg, broke down why it\u2019s misleading to claim that a user-generated master password would take millions of years to guess.<\/p>\n<p>He points out that user-generated passwords are inherently more crackable than their machine-generated counterparts because humans don\u2019t generate passwords randomly as computers do. And that sophisticated hackers wouldn\u2019t try to decrypt computer-generated passwords first. As humans <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/general\/\" data-internallinksmanager029f6b8e52c=\"3\" title=\"General\" target=\"_blank\" rel=\"noopener\">general<\/a>ly use <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/medicine.llu.edu\/academics\/resources\/using-mnemonic-devices-make-memorization-easier\">mnemonic devices<\/a>\u00a0to remember passwords, hackers will try to guess those types of passwords first.<\/p>\n<p>To make things more straightforward, Goldberg employed what he calls a \u201csilly analogy\u201d (which is actually quite apt to understanding the claim). Suppose you went to the <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/watch-movies-tv-seriess\/\" data-internallinksmanager029f6b8e52c=\"8\" title=\"Watch Movies &amp; TV Series\" target=\"_blank\" rel=\"noopener\">movies<\/a> and forgot where you parked your car. The first place you would look for your vehicle would be the theater parking lot, not the whole surface of the Earth. In the analogy, the theater parking lot represents the user-generated mnemonic master passwords, and the whole surface of the Earth represents computer-generated random master passwords.<\/p>\n<p>If they\u2019re smart (and probably are), the hackers will go after the weaker user-generated passwords first rather than trying to break the stronger randomly-generated passwords. And they have unlimited tries for every single user in the backup database.<\/p>\n<p>Needless to say, things still don\u2019t look good for LastPass. And unfortunately, if your information is part of that data breach and you used a non-random method to craft your master password, you should look into ways to protect yourself from potential cybercrime.<\/p>\n<p><small>Source: <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.anrdoezrs.net\/links\/100317643\/type\/am\/sid\/140925-xid-{xid}\/https:\/\/blog.1password.com\/not-in-a-million-years\/&amp;___trxnet=cj\">1Password<\/a><\/small>\n<\/div>\n<p><script>\nsetTimeout(function(){\n  !function(f,b,e,v,n,t,s)\n  {if(f.fbq)return;n=f.fbq=function(){n.callMethod?\n  n.callMethod.apply(n,arguments):n.queue.push(arguments)};\n  if(!f._fbq)f._fbq=n;n.push=n;n.loaded=!0;n.version='2.0';\n  n.queue=[];t=b.createElement(e);t.async=!0;\n  t.src=v;s=b.getElementsByTagName(e)[0];\n  s.parentNode.insertBefore(t,s)}(window, document,'script',\n  'https:\/\/connect.facebook.net\/en_US\/fbevents.js');\n  fbq('init', '1137093656460433');\n  fbq('track', 'PageView');\n  },3000);\n<\/script><\/p>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more like this article, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/technology\/\" target=\"_blank\" rel=\"noopener\">Technology category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/www.reviewgeek.com\/140925\/lastpass-slammed-over-hacked-password-security-claims\/\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;LastPass Slammed Over Hacked Password Security Claims \u2013 Review Geek&#8221; Maor_Winetrob\/Shutterstock Password manager LastPass has been embroiled in a data-leak scandal, with each update worsening the situation. In its most recent post, the company assured users their passwords were safe so long as they followed LastPass\u2019s guidelines. Today, competitor 1Password released a scathing rebuttal. To&#8230;<\/p>\n","protected":false},"author":1,"featured_media":532438,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.reviewgeek.com\/p\/uploads\/2021\/12\/09dd8c26-1.png","fifu_image_alt":"","footnotes":""},"categories":[18],"tags":[],"class_list":["post-532437","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/532437","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=532437"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/532437\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/532438"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=532437"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=532437"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=532437"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}