Most important is this :We are confident that our encryption measures are sufficient to protect the vast majority of users. LastPass strengthens the authentication hash with a random salt and 100,000 rounds of server-side PBKDF2-SHA256, in addition to the rounds performed client-side. This additional strengthening makes it difficult to attack the stolen hashes with any significant speed.
absolutely agree. it has proven itself to be infinitely useful, especially when using multiple machines. love it!Originally Posted by Blazzok
Yeah. When I logged in for the first time after the "hack", they just asked me to confirm my account by following a link in a verification email. No password changes were required.
Using LastPass is still one of the best decisions I ever made
Slight thread necro, but you guys might wanna read this:LastPass vulnerable to simple phishing attack
Thanks for the headsup.
I am way too paranoid to ever use this, I get how easy it makes things for people, but its not for me.
Ya, same here. Stuff like that always makes me cringe.
Always use 2 step authentication if it's available!
Here's Everywhere You Should Enable Two-Factor Authentication Right Now
Thanks for sharing.
List is quite old. There should be a lot more sites that now support 2 step authentication.
I use Google authenticator for android for all my accounts.
yeah, I use it where ever its available.
Posting Permissions
