Phishing attack could steal LastPass password manager details

Samuel Gibbs

from Technology | The Guardian on 2016-01-18 13:51 (#1122N)

Hackers can simulate a login dialogue so closely that even careful users might simply give them their username, password and even their two-factor key

A security researcher has released a tool that can steal the login details and two-factor authentication key for the popular LastPass password manager, leaving users potentially exposed.

LastPass, like many other password managers, stores user's passwords in the cloud in an encrypted vault protected by a single username and password. The vault can also be protected using various forms of two-factor authentication.

Source	RSS or Atom Feed
Feed Location	http://www.theguardian.com/technology/rss
Feed Title	Technology \| The Guardian
Feed Link	https://www.theguardian.com/us/technology
Feed Copyright	Guardian News and Media Limited or its affiliated companies. All rights reserved. 2024