fsebugoutzone.org:9999

       Post AQwcJPEF3jFhp2RYLw by arash@twit.social
 (DIR) More posts by arash@twit.social
 (DIR) Post #AQsjW9rnPNFazO8HZY by twitnews@twit.social
       2022-12-23T00:41:48Z
       
       0 likes, 0 repeats
       
       Lastpass: Hackers stole customer vault data in cloud storage breach - https://www.bleepingcomputer.com/news/security/lastpass-hackers-stole-customer-vault-data-in-cloud-storage-breach/&quot;The threat actor was also able to copy a backup of customer vault data from the encrypted storage container which is stored in a proprietary binary format that contains both unencrypted data, such as website URLs, as well as fully-encrypted sensitive fields such as website usernames and passwords, secure notes, and form-filled data.&quot;
       
 (DIR) Post #AQsqqs7rGNI9j8TBdg by MNMinn@mastodon.social
       2022-12-23T02:03:58Z
       
       0 likes, 0 repeats
       
       @twitnews what I&#39;m reading is that they used the same encryption keys in their dev and production servers. If they do try to brute force the master passwords against the backup, changing your master password would have no effect. If you&#39;re using a weak password, you need to reset every password in your vault.  😵‍💫
       
 (DIR) Post #AQtHqS5Om8tBjFLMa8 by arash@twit.social
       2022-12-23T07:06:27Z
       
       0 likes, 0 repeats
       
       @twitnews This is absolutely catastrophic. It&#39;s just the nightmare scenario everyone needed. Time to change all of my passwords...
       
 (DIR) Post #AQwcJPEF3jFhp2RYLw by arash@twit.social
       2022-12-24T21:39:54Z
       
       0 likes, 0 repeats
       
       @twitnews Ok, I did some math and it seems apart from the unencrypted urls, the encrypted data are safe. If you have a 10-character long password with uppercase and lowercase letters, numbers and special characters, the total number of combinations are around 2.8*10^18. Now, if it takes the hackers 10 msec to test one combination, it would take them around 800 million years to try all the combinations. I think I&#39;m good with these odds (unless I&#39;m missing something here).
       
 (DIR) Post #AR3IyHnGy8TFevlQgK by setuplet@norrebro.space
       2022-12-28T03:06:09Z
       
       0 likes, 0 repeats
       
       @twitnews the millon-dollar question people like me asks themselves are, Is all hopes lost And IF one need to switch Password manager and passwords, what can one trust at this stage I&#39;m kinda preparing for a nightmare news that my completely random Master password is not good enough to keep one safe. What a Fucking mess. why does security have to be the least fun job in the world because the security you had could last...😩