Huge Security Alert: LastPass Suffers Major Data Breach - Here's What You Need to Know to Protect Yourself!

[Practic]

"Well, where do you store your private DPG then?"
Private DPGs are generators of passwords locations to which (URLs) are known only to users.
Private DPGs as well as public DPGs do not store passwords in any place.

"And what happens when that computer fails?"
Private DPGs are hosted on multiple servers in multiple countries, so if some fail other will work.
In a very unlikely event if all servers will be down a user will have portable offline versions, which can be run on any computer.

"And how do you give billions of users worldwide each their own unique cryptographically secure DPG?"
It is a simple combinatorics. If there will be 100 trillions people on the planet, they will have private DPGs which will generate unique set of passwords for each of them.

If you have an algorithm that generates the same passwords for the same input every single time, the end result is the same as storing them in a file.

"If you have an algorithm that generates the same passwords for the same input every single time, the end result is the same as storing them in a file."

When your passwords are in a file, it can be hacked and decrypted.

When we have an algorithm, even if it is a public algorithm, there are too many inputs to test to discover your output passwords. You will spends millions of years with quantum computers to brute-force such algorithm.

 

Dislike ads? Remove them and support the forum: Subscribe to Fastlane Insiders.

[c4n]

OK. Good luck with your project then

 

[Practic]

OK. Good luck with your project then

Thank you!

 

[becks22]

I just switched over to 1Password for the business. My vault pws for LP were over 25 characters but what made me switch wasn't the breach but how many issues I was having with LP teams. We would move a PW from an individual folder to a shared folder (so everyone could access it) and it would get corrupted. 1Password uses tags not folders which is much simpler. I like it so far.

 

Dislike ads? Remove them and support the forum: Subscribe to Fastlane Insiders.

[Practic]

I just switched over to 1Password for the business. My vault pws for LP were over 25 characters but what made me switch wasn't the breach but how many issues I was having with LP teams. We would move a PW from an individual folder to a shared folder (so everyone could access it) and it would get corrupted. 1Password uses tags not folders which is much simpler. I like it so far.

Researchers Find 26 Security Flaws in 9 Popular Android Password Managers including MyPasswords, Informaticore, LastPass, Keeper, F-Secure Key, Dashlane, Hide Pictures Keep Safe Vault, Avast Passwords, and 1Password.​

Researchers Find 26 Security Flaws in 9 Popular Android Password Managers

A team of German security professionals has discovered 26 security flaws in nine of the world's most popular Android password managers.

www.bleepingcomputer.com

 

[Practic]

LastPass was hacked again!

Hackers stole LastPass data from an employee's home computer

A high-level LastPass employee's home computer was hacked, giving cybercriminals access to the corporate vault. Here's what you need to know.

www.komando.com