LastPass Possibly Hacked
 

Just a warning for anyone that uses the service.

http://thenextweb.com/apps/2011/05/0...ter-passwords/

That sucks.. changed http://www.discussworldissues.com/fo...lies/cool1.gif

Use http://keepass.info/ instead

That's not online is it?

Too much effort to click?

I clicked but on the page couldn't see any log-in area.

I clicked on the page but I have no idea what I'm looking at.

So much for the advice to use one of these services to keep all your passwords remembered. One hack and some ne'er-do-well has all your passwords. Great.

Not necessarily

Definitely a "Not necessarily." If the passwords were stored on the service's servers in an un-encrypted manner, yeah.

But in the case of LastPass, everything's encrypted -- Even moreso if you use one of their methods of two-factor identification. Even if they got your master password, they'd also need the second factor for that to even be useful! http://www.discussworldissues.com/fo...es/tongue1.gif

The problem with the two-factor encryption is that makes it only as secure as your e-mail as there's always the possibility to disable the second authentication. However, as you say everything is encrypted.

Correct, but then it'd require having your email already hacked... Even Google Apps has two-factor authentication now. http://www.discussworldissues.com/fo...lies/wink1.gif

Exactly, ergo they are just erring on the side of caution.

I hear one of these works pretty good.

http://i3.squidoocdn.com/resize/squi...tickynotes.jpg

Yeah, but I hear the encryption on those kinda suck......

Haha, not to mention passing via multiple devices hooked up via internet.