![]() ![]() It’s very important that you use a strong Master Password and it should never be used as a password for any other website or app. Operating and keeping these tools up-to-date is a continuous effort and to keep you safe. LastPass has many industry-standard protections in place, from various infrastructure level solutions, such as multiple web application firewalls, DDoS protection solutions, protections for managing Bot activities, and malicious request filtering engines, to various application-level protections where we limit unusual behaviors in various ways. As a reminder, you should never re-use your LastPass Master Password and should always have multi-factor authentication enabled for your LastPass account. If you have reused your LastPass Master Password anywhere, we also recommend immediately changing your LastPass Master Password. We recommend immediately following the steps outlined here to make sure only you have access to your LastPass account, and enabling multi-factor authentication on your account. Additionally, we want to reassure you that there is no indication that LastPass or LogMeIn were breached or compromised – these events appear to be entirely based on third-party breaches where individuals are attempting to take exposed e-mail addresses and passwords from unrelated and unaffiliated services and use them to gain access to other accounts. It is important to note that, based on your receipt of an unexpected SMS or Email account recovery request, it is very likely that any attempted access by a third-party has failed due to your use of two-factor authentication. Credential stuffing attacks are events when a malicious or bad actor attempts to access user accounts (e.g., in this case, LastPass) using e-mail addresses and passwords obtained from third-party breaches related to other unaffiliated services. Our security and engineering teams have recently observed potential “credential stuffing” attacks occurring. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |