Welcome
|
FAQ
|
Downloads
|
Wiki
Tiny Core Linux
Welcome,
Guest
. Please
login
or
register
.
Did you miss your
activation email
?
1 Hour
1 Day
1 Week
1 Month
Forever
Login with username, password and session length
News:
Language translations
now possible!
Home
Help
Login
Register
Tiny Core Linux
»
Off-Topic
»
Off-Topic - Tiny Core Lounge
»
lastpass breach
« previous
next »
Print
Pages: [
1
]
Go Down
Author
Topic: lastpass breach (Read 2946 times)
gadget42
Hero Member
Posts: 922
lastpass breach
«
on:
December 22, 2022, 10:55:30 PM »
20221222-2152pm-cdt-usa-searched forum for "lastpass" but no results...so an fyi
Password manager says breach it disclosed in August was much worse than thought.
https://arstechnica.com/information-technology/2022/12/lastpass-says-hackers-have-obtained-vault-data-and-a-wealth-of-customer-info/
Logged
** WARNING: connection is not using a post-quantum kex exchange algorithm.
** This session may be vulnerable to "store now, decrypt later" attacks.
** The server may need to be upgraded. See
https://openssh.com/pq.html
NewUser
Full Member
Posts: 174
Re: lastpass breach
«
Reply #1 on:
December 23, 2022, 12:56:08 AM »
Glad I use KeePass.
Logged
gadget42
Hero Member
Posts: 922
Re: lastpass breach
«
Reply #2 on:
December 28, 2022, 09:01:20 AM »
https://www.techdirt.com/2022/12/28/lastpass-tries-to-bury-the-full-scope-of-its-disastrous-privacy-breach-behind-the-christmas-holiday/
Logged
** WARNING: connection is not using a post-quantum kex exchange algorithm.
** This session may be vulnerable to "store now, decrypt later" attacks.
** The server may need to be upgraded. See
https://openssh.com/pq.html
gadget42
Hero Member
Posts: 922
Re: lastpass breach
«
Reply #3 on:
December 29, 2022, 12:13:29 AM »
https://www.theverge.com/2022/12/28/23529547/lastpass-vault-breach-disclosure-encryption-cybersecurity-rebuttal
Logged
** WARNING: connection is not using a post-quantum kex exchange algorithm.
** This session may be vulnerable to "store now, decrypt later" attacks.
** The server may need to be upgraded. See
https://openssh.com/pq.html
NewUser
Full Member
Posts: 174
Re: lastpass breach
«
Reply #4 on:
January 02, 2023, 12:28:44 AM »
The moral of this story is you can't (always) trust the cloud.
Logged
gadget42
Hero Member
Posts: 922
Re: lastpass breach
«
Reply #5 on:
January 06, 2023, 06:16:10 AM »
https://arstechnica.com/information-technology/2023/01/first-lastpass-now-slack-and-circleci-the-hacks-go-on-and-will-likely-worsen/
Logged
** WARNING: connection is not using a post-quantum kex exchange algorithm.
** This session may be vulnerable to "store now, decrypt later" attacks.
** The server may need to be upgraded. See
https://openssh.com/pq.html
gadget42
Hero Member
Posts: 922
Re: lastpass breach
«
Reply #6 on:
December 09, 2024, 04:28:37 AM »
enjoyed this password manager commentary enough to share:
https://lock.cmpxchg8b.com/passmgrs.html
Logged
** WARNING: connection is not using a post-quantum kex exchange algorithm.
** This session may be vulnerable to "store now, decrypt later" attacks.
** The server may need to be upgraded. See
https://openssh.com/pq.html
Print
Pages: [
1
]
Go Up
« previous
next »
Tiny Core Linux
»
Off-Topic
»
Off-Topic - Tiny Core Lounge
»
lastpass breach
Welcome
FAQ
Downloads
Wiki
