LastPass security breach linked to $35 million stolen in crypto heists
www.theverge.com
Researchers found that almost every victim was a LastPass user.

More than $35 million has been stolen from over 150 victims since December — ‘nearly every victim’ was a LastPass user::Security experts believe some of the LastPass password vaults stolen during a security breach last year have now been cracked open following a string of cryptocurrency heists

  • Anonymousllama@lemmy.worldEnglish
    12·
    1 year ago

    I’d be worried about losing access to the entirety of your passwords if Google up and decides that one day your account is suspended. There’s been a few reports historically where someone gets their Gmail account suspended for some mistaken reason and all their associated access gets pulled (e.g. from drive, sheets, etc)

      • Terrasque@infosec.pubEnglish
        1·
        1 year ago

        I got a Google account that was shut down after some spammer started using that email as the sender address (sometimes called a Joe job). I somehow got in contact with an employee (friend of a friend) that checked on the account and verified it wasn’t my fault and reopened it, but a week later it got closed automatically again, with no easy way to reopen it.

        The backscatter was hundreds of emails per day, so the email part of the account was useless anyway, but I used it for other things.

        So it can happen at no fault on your own, and impossible to do anything about.

      • Tibert@compuverse.ukEnglish
        21·
        1 year ago

        Bitwarden offers an encrypted backup…

        Google has maybe a plain text export.

        Bitwarden has run flawless for me for multiple years.