If you are a crypto degen and you use LastPass or a password manager, you need to read this ( Your future investment security may depend on it).
The whole #lastpass security breach over the last few months had me concerned.
I wasn't too sure what to do about it until I came across Steve Gibson's Security Now podcast with Leo Laporte.
Here is what I learned 👇
I wasn't too sure what to do about it until I came across Steve Gibson's Security Now podcast with Leo Laporte.
Here is what I learned 👇
LastPass admitted that their off-site cloud backup of their customers’ mostly-encrypted vault data was hacked and is now in the hands of malicious actors.
Your password strength is the last line of defence, if you had an entropy of fewer than 50 Bits you need to act asap.
Your password strength is the last line of defence, if you had an entropy of fewer than 50 Bits you need to act asap.
LastPass Pointers:
The company has been too slack in upgrading prior users to more stringent security measures for their own security.
E.g.
1. some older users may still be on 8-character passwords, considered too short by security experts.
The company has been too slack in upgrading prior users to more stringent security measures for their own security.
E.g.
1. some older users may still be on 8-character passwords, considered too short by security experts.
2. Password-based key derivation has changed from 500 iterations in 2012 to 100,100 in 2018 and now 350,000.
if you are still using LastPass, move your Iteration to 350,000 from the default 100,100. Some may be on 5,000😱still.
Crypto user? -definitely, time to migrate.
if you are still using LastPass, move your Iteration to 350,000 from the default 100,100. Some may be on 5,000😱still.
Crypto user? -definitely, time to migrate.
Other Password Managers to consider.
Steve and Leo post incident survey of security professionals showed the following preferences.
•DashLane
•1Password
•Bitwarden
@Bitwarden is open sourced, @1Password and @dashlane are not.
Steve and Leo post incident survey of security professionals showed the following preferences.
•DashLane
•1Password
•Bitwarden
@Bitwarden is open sourced, @1Password and @dashlane are not.
@Bitwarden @1Password @dashlane concluding thoughts:
I will be migrating from Lastpass for sure. Seems they have lost their way as they got acquired and time passed.
Crypto LastPass users, you likely need to migrate and create new @MetaMask accounts.
I will be migrating from Lastpass for sure. Seems they have lost their way as they got acquired and time passed.
Crypto LastPass users, you likely need to migrate and create new @MetaMask accounts.
@Bitwarden @1Password @dashlane @MetaMask If you found this helpful, please retweet to help others avoid a potential loss. Here is the link.
https://twitter.com/NhialMa/status/1612600125578219522
• • •
Missing some Tweet in this thread? You can try to
force a refresh
