Update: LastPass told 9to5Mac that a product release caused the outage. Details below.
It’s not just you. LastPass, the popular password manager used by over 33 million people, suffered from widespread downtime this morning. It only appeared to affect users visiting the service’s main website, who were quickly presented with “404 Not Found” error messages.
Expand Expanding Close
Update: Within an hour of publishing, Apple removed the previously reviewed and approved app in question from the App Store.
Is it LastPass or LassPass? LastPass wants you to know that it’s definitely LastPass, and LassPass is completely sus. The imposter “password manager” is undeniably masquerading as the real thing, and it’s live in the App Store as of this writing.
Expand Expanding Close
LastPass faced a major attack in 2022 after hackers gained access to sensitive user data through an exploit found on the computer of one of the engineers working for the company. More than two years after this incident, LastPass has now announced new measures to better protect users’ data, who will now be required to set a stronger master password.
Expand Expanding Close
The popular password manager LastPass faced a major attack last year that compromised sensitive data of its users, including passwords. Back in December, the company shared a statement confirming that attackers obtained such data and that users should change their passwords. Now LastPass has revealed that the incident was caused by credentials stolen from a DevOps engineer.
Expand Expanding Close
A GoTo hack related to the LastPass security breach was far worse than initially disclosed. The company, formerly known as LogMeIn, has revealed that attackers obtained not only encrypted backups of customer data, but also an encryption key for at least some of that data.
It’s a similar tale to the LastPass hack, which followed a similar path from low-key initial announcement to revelations that it was significantly worse than initially feared …
Expand Expanding Close
The LastPass security breach controversy continues. After an independent security analyst described statements made by LastPass as “half-truths and outright lies,” rival password management company 1Password has also weighed in …
Expand Expanding Close
Just before Christmas, LastPass issued an update on its security breach including the news that customer vaults were obtained by the hacker. After digging through all the technical claims, one security researcher says the situation is much worse than the company claims and beleives the statement is “full of omissions, half-truths and outright lies.”
Expand Expanding Close
LastPass is back today with its latest statement on the damage of its security breach. While the scope of the attack wasn’t clear in early December, now the company has shared that copies of customers’ password vaults were obtained along with names, emails, billing addresses, phone numbers, and more. Here’s what you should know.
Expand Expanding Close
The LastPass security breach that occurred back in August did allow attackers to access customer data, says the company. It had previously said that no customer data was compromised.
LastPass owner LogMeIn stresses that customer passwords have not been compromised, as the company uses end-to-end encryption so that only the subscriber has the decryption key …
Expand Expanding Close
A DoorDash hack has been confirmed by the company, with full customer contact details exposed by the security breach: name, address, and phone numbers.
Separately, LastPass has also confirmed an attack on its own systems, but says it doesn’t believe that any user data was obtained …
Expand Expanding Close
Apple @ Work is brought to you by Mosyle, the leader in modern mobile device management (MDM) and security for Apple enterprise and education customers. Over 28,000 organizations leverage Mosyle solutions to automate the deployment, management and security of millions of Apple devices daily. Request a FREE account today and discover how you can put your Apple fleet on auto-pilot at a price point that is hard to believe.
I am not sure when password management services went from a prosumer concept to enterprise tools, but I am glad it’s happened. For years, IT departments have told users to use complex passwords that aren’t repeated. That advice didn’t come with any solutions to help people properly manage them, though. Today, tools that were previously aimed at consumers now have strong enterprise offerings. For IT departments looking to ensure password security, both 1Password and LastPass have strong solutions.
Expand Expanding Close
Following multiple reports from users of the popular password manager LastPass about unauthorized login attempts to their accounts, the company behind the platform now claims that no passwords were compromised and that all data remains “protected and secure.”
Expand Expanding Close
The password manager industry is going through some changes. Dropbox has announced it will launch a free password manager in April, while LastPass’ free offering is changing today.
Expand Expanding Close
The popular password manager LastPass will be discontinuing its native Mac app, the company announced today. Support for the dedicated LastPass app for Mac will be dropped, with users being migrated to a new “Mac app” that is essentially a web app in a wrapper. The new app is on the right in the above image.
It’s becoming increasingly more important that users use strong passwords on their online accounts. Using something like a password management app can help not only generate more secure passwords, but keep track of them. News from one developer today shares some data on how iOS 12 has boosted usage of its password manager.
When Apple put an NFC chip into the iPhone 7 and later, it was initially limited to Apple Pay. iOS 11 opened up access to third-party developers, and YubiKey has just taken advantage of that to allow one of its hardware keys to login to iOS apps.
The YubiKey NEO is a USB key has so far been used mostly for Mac and PCs …
Last month, LastPass announced that it would soon be introducing a new “Families” plan for sharing passwords, bank account info, and other sensitive data among family members. We finally have pricing details on how much LastPass Families will cost, but in addition to that, the existing Premium option is seeing a price hike and a couple features from the Free plan are being removed.
In today’s world, it is important to have strong, unique, and secure passwords protecting all of your online accounts. Services like LastPass make this easy to do with tools that generate random passwords and store them with strong encryption. Today, LastPass has announced that it will soon make family sharing a priority…
Update:
LastPass says that the browser extension vulnerability has now been patched, and that there is no evidence that it was ever exploited.
Google security researcher Tavis Ormandy reported a client-side vulnerability in the LastPass desktop browser extensions, but neither he nor LastPass released any details pending a fix. The company said that this has now been done, and most users will be automatically updated to version 4.1.44.
On Saturday, March 25th, security researcher Tavis Ormandy from Google’s Project Zero reported a security finding related to the LastPass browser extensions. In the last 24 hours, we’ve released an update which we believe fixes the reported vulnerability in all browsers and have verified this with Tavis himself.
Most users will be updated automatically. Please ensure you are running the latest version (4.1.44 or higher), which can always be downloaded at https://www.lastpass.com/.
LastPass has now provided details of the issue in a blog post, but warns that the obscure nature of the vulnerability means that the explanation is highly technical.
Password-manager LastPass is recommending that users follow precautionary steps while it works on fixing a vulnerability discovered over the weekend. Two of the recommendations are generic in nature, and should be followed anyway, but one is specifically geared to protecting your account from the vulnerability …
Security-minded individuals looking to simplify their two-factor authentication logins may want to take a look at LastPass’s new app today, LastPass Authenticator. The iOS App Store currently has a few different apps that can already handle two-factor authentication logins, like Google Authenticator and 1Password. Most of them come with the minor annoyance that once the app is launched, a user has to find the site’s login, and then type the OTP into the site before it expires. LastPass Authenticator looks to improve that experience by allowing users to quickly approve the new login requests directly from their devices.
LastPass has updated its Mac and iOS apps and browser extensions to version 4.0 to add an emergency access feature and shared passwords, as well as a significantly revamped user-interface.
Emergency Access (shown below) is designed to ensure that you aren’t permanently locked out of your account if you ever forget your master password.
Emergency Access lets users designate trusted family, friends or colleagues to have access to their password vault in the case of an emergency. For added security, a user can require a waiting period between when an Emergency Access contact can request access to the vault and when access is granted. During the waiting period, users can decline an Emergency Access request to their vault.
The new Sharing Center is designed to provide a safe method of allowing multiple people access to the same account, such as when two or more family members want access to utility accounts …
LastPass, which claims to be the world’s most popular password manager, now offers the choice of free usage on either mobile or desktop platforms. Previously, desktop use was free while use on a mobile device required a $12 annual subscription.
You can now use it for free on either platform – but still need to pay to get both mobile and desktop usage. LastPass told us that, seven years in, it was time to change its freemium pricing model …
Expand
Expanding
Close
After just releasing a new version of Chrome for the desktop, Google is out today with an updated version of Chrome for iPhone and iPad. Version 42 includes a new widget in the Today section of Notification Center, support for 1Password and LastPass and other app extensions, plus more.
Expand
Expanding
Close
Smart password and security techniques are becoming increasingly important in our digital lives as new hacks seem to appear all the time, and having a unique and secure password (unlike these) helps ensure that your online identity is safe in the event of such a compromise.
LastPass, a cross platform secure digital vault app, is helping Mac users tackle the password management problem with the debut of its new Mac app. Previously only available for Mac as a browser extension and web portal, the new LastPass for Mac app brings new features to the desktop including quick search, security check, and more.
Expand
Expanding
Close
