lastpass Archives - Zoli's Blog

The LastNews (!) You Want to Hear is LastPass Hacked. Now What?

Posted on May 5, 2011 ·

Password management service LastPass notified users their servers may have been hacked. I take a minute break, let it sink in.

Yes, this is the one (Last) uber-super secure system you trust with ALL your passwords. Ouch. But d

espite the hacking, LastPass says users who had a strong master password in the first place are still safe (and they are forcing users to change that master password now).

I’m not a security expert and don’t pretend to be one, so all you can get from me is some ramblings from a business user:

Most of us are at an even higher risk every day: statistics show that over 60% of Internet users

have a favorite set of login credentials …

(Cross-posted @ CloudAve » Zoli Erdos)

Filed Under: Personal Productivity · Tagged: CloudAve, lastpass, passpack, Password, security

Foxmarks, Xmarks, LastPass, Xpass, LastX, X%^&% Quick Rant

Posted on December 2, 2010 ·

Warning: I think I’m becoming a curmudgeon – except that title has until now been reserved for somebody else . But I still have doubts about the recent transaction: LastPass acquired Xmarks.

I really liked Xmarks – when it was Foxmarks. A simple bookmark synchronization service that would keep your Firefox up-to-date no matter where you logged in. Essential Cloud Computing when we’re no longer enslaved to one computer only.

Then it became Xmarks, started to offer password sync and several other services, including “enhanced” Google Search – i.e. adding a social layer to Google’s algorithm. I opted out of password sync, sticking to the basics.

LastPass, on the other hand was a solution for the password conundrum – so good, that Ben was ready to dismiss his usual concerns. The transaction probably makes sense for both parties: Xmarks was going down the drain, having experimented with business models and running out of cash. LastPass picks up millions of users.

So why am I ranting?

(Cross-posted @ CloudAve » Zoli Erdos)

Filed Under: Software · Tagged: CloudAve, facebook, firefox, foxmarks, lastpass, m&a, privacy, security, sharing, social, synchronization, wikileaks

The Password Conundrum

Posted on April 12, 2010 ·

I’m not a security expert and don’t pretend to be one, but half-cooked advice on fundamental security issues p***es me off big time. Today it’s a lengthy article at the Boston Globe: Please do not change your password.

It’s based on a study by a Microsoft researcher, who concludes that regularly changing passwords is a big waste of time – so far so good and I’ve just saved you reading 3 pages –but what’s the conclusion?

Use strong, bullet-proof passwords in the first place
Use updated security software, don’t install unknown stuff to avoid keyloggers

It all makes sense, except that it’s hard to do. Statistics show that over 60% of Internet users have a favorite set of login credentials and they use that single set across many systems. Very-very dangerous, but the reason we do it is that this is what we can remember easily.

The missing piece from the advice is how we deal with the “bullet-proof” and unique set of login credentials we create on dozens of systems we need to log in. Some people will develop a formula to make up such passwords – too bad such patterns are often recognizable. Others will write them down … ouch!

So we’re left with two options:

physical devices, be it lists, passcode cards, USB sticks..etc, what if you lose them?
password management systems like Keypass, Lastpass, Passspack, Syferlock… – what if they get compromised?

What’s your solution?

(Cross-posted @ CloudAve)

Filed Under: Software · Tagged: CloudAve, keypass, lastpass, login, passpack, Password, security, syferlock

The LastNews (!) You Want to Hear is LastPass Hacked. Now What?

Recent Posts

Recent Comments