LastPass; What's happened now?
Let’s just start with yikes…. This is the second breach at LastPass within the span of 6 months.
LastPass has admitted that the hacker was able to access encrypted secure notes, along with access and decryption keys. As a result, they were able to export the entries of the native corporate vault and the content of shared folders. This granted the hacker access to not only LastPass’s AWS S3 production backups but also other cloud-based storage resources and crucial database backups.
The cybercriminal achieved this by targeting the DevOps engineer’s home computer and exploiting a vulnerable third-party media software package. This package enabled remote code execution capabilities, allowing the threat actor to implant keylogger malware. LastPass officials have shared this information, indicating that the attack was made possible by this software vulnerability.
The backup data obtained by the hacker included both unencrypted data, like website URLs, and encrypted data, such as website usernames, passwords, secure notes, and form-filled data, which were encrypted with 256-bit AES.
So, what do we suggest instead? Meet 1Password!
Security
1Password is known for its strong security, with end-to-end encryption and a unique secret key that is only known to the user. It also has a more intuitive and polished user interface than LastPass allowing for offline access, meaning you can access your passwords and data without an internet connection. However, 1Password is more expensive than LastPass and does not offer a free version.
Storage
LastPass offers 50 MB of storage for free users, while 1Password only offers storage options to paying users. However, when comparing paid storage options between the two, 1Password offers less restrictive storage options. LastPass’s file size limit makes it inferior, and its free version is limited and inconvenient for advanced devices and high-quality files.
Password sharing
1Password offers a password sharing feature called “Psst!” found here that allows users to share items with recipients who aren’t 1Password users. Users can simply open an item to get a link to share with anyone.
In comparison, LastPass only allows users to share credentials with other LastPass users and frequently requires email address verification before allowing sharing.
Overall, 1Password offers more functionality and versatility in password sharing and is more user-friendly than LastPass. This is an important factor to consider when deciding between the two password managers.
Keep up to date!
🚀 Upgrade your tech game with our new blog posts! Expert insights and advice on the latest trends and developments in the tech industry. Click below to give your business a boost! 📲
Subscribe to our newsletter!
