I received a notice from LastPass (a company that promises to secure all your passwords in one place) saying that hackers were able to “copy a backup of customer vault data,” meaning they theoretically now have access to all of those passwords if they can crack the stolen vaults. If you have a super long and strong master password, you’re probably fine. But if you don’t (and even if you do), it’s time to change all of the passwords you’ve used LastPass to protect. I’m sure LastPass customers don’t have much else to do this week – ugh!
In general, I like the convenience and security offered by LastPass. (I’m not a customer, BTW. I use a competing product.) However, there is an old adage that espouses Yoda-esque wisdom: “Don’t keep all of your eggs in one basket.” Having important data distributed in different places is as inconvenient for the hackers as it is for you.
Condolences to the LastPass customers who are going to spend hours changing passwords today, but this is a small wake-up nudge to the rest of us to check our security protocols, workflows, and processes.
Author’s note: This is not a sponsored post. I am the author of this article and it expresses my own opinions. I am not, nor is my company, receiving compensation for it.