this post was submitted on 07 Sep 2023
988 points (99.0% liked)

Technology

59440 readers
3634 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

More than $35 million has been stolen from over 150 victims since December — ‘nearly every victim’ was a LastPass user::Security experts believe some of the LastPass password vaults stolen during a security breach last year have now been cracked open following a string of cryptocurrency heists

you are viewing a single comment's thread
view the rest of the comments
[–] SatyrSack@lemmy.one 8 points 1 year ago (3 children)

So just change whatever passwords you had saved to LastPass. That would mitigate any issues, right?

[–] CoderKat@lemm.ee 3 points 1 year ago* (last edited 1 year ago)

Pretty much. Though also any security questions or other private info you have saved, some of which is much more annoying to protect.

Though one annoying thing is that even if you change everything, what they find might help them social engineer an attack.

I second Bitwarden, BTW. Best password manager I've used.

[–] 10EXP@sh.itjust.works 1 points 1 year ago

Your username gives me PTSD for past Hades speedruns and I hate it.

[–] ultratiem@lemmy.ca 1 points 1 year ago

Just. It’s not an insurmountable problem, but I wouldn’t be happy changing the login details, one by one, on the some 80 websites I have in my vault.

Not to mention if you’re using an email anonymizer, you’ll have to regenerate new emails for them all too. I guess you could do it on demand, but knowing my batch of emails in floating around the dark web doesn’t sit well with me. Worse yet if it’s your actual email, then they have that now.