LastPass breach exposes hashed master passwords

Another day and another breach, this time of the password database LastPass. The service announced that its systems have been compromised on its official blog yesterday. The unknown attackers have made off with server per-user salts and authentication hashes. In plainer terms, the encrypted master passwords of an unknown number of LastPass users have been exposed, and the password databases secured with those master keys are potentially at risk.

As a result of this breach, LastPass will be prompting its customers to update their master passwords. It'll also require users logging in from ...

Read more...