The result is the encryption used may be somewhat more vulnerable to some forms of attack.
While LastPass did change the default some years ago, older accounts were created using a lower number and were never instructed to update. (Screenshot: )Įnsure that this setting is 600,000 or larger. You’ll find it in the advanced settings in your LastPass account online. There is an obscure setting in LastPass called “password iterations” that controls the quality of the encryption used by the tool. The problem is, thinking that way often leads to lax security. I simply run into too many people who believe for a variety of reasons that they are not valuable enough for an attacker to care about. I discuss this in more detail in Why You - Yes, You - Are a Target of Hackers. No matter how much you use or think you don’t use the internet and online services, the risks posed apply to everyone. “Minimal exposure to external threats” is misleading Be particularly wary of phishing attempts, which may use information from the breach to create convincing but fake emails. Regardless of which password manager you use in the future, change passwords to important (and even not-so-important) accounts and consider adding two-factor authentication to those as well.
Ensure that LastPass’s “Password iterations” setting is 600,000 or more, change your master password, and add two-factor authentication to LastPass.
0 kommentar(er)
