In the latest edition of the “Smashing Security” podcast, hosted by computer security veterans Graham Cluley and Carole Theriault, Carole has suffered an injury, we journey back in time to one of our earliest episodes to discuss the perils of passwords, and Rachael Stockton from LastPass drops by for a chat.
Popular password manager LastPass says that it has fixed a vulnerability in its Chrome and Opera browser extensions that could have potentially seen an attacker steal the username and password previously filled-in by the software.
A huge collection of email addresses and passwords, which can be used in attempts to break into online accounts, has been discovered.
If you are one of the affected users, what should you do about it?
Is password manager 1Password treating its customers unfairly? Are autonomous cars driving us around the bend? And what is this Net Neutrality thing anyway?
All this and more is discussed in the latest edition of the “Smashing Security” podcast.
The popular password management firm LastPass is working to fix major vulnerability in its software, responsibly disclosed to it by a security researcher.
David Bisson reports.
Working separately, two vulnerability researchers have found worrying ways to steal passwords from the popular online password manager LastPass.
Fortunately, LastPass has responded quickly – fixing the bugs before they can be maliciously exploited. Here is what you need to know.
David Bisson wonders if he has made a mistake in his choice of password manager.
It may have kept his passwords secure, but Dashlane has published his email address to the world.
Two security researchers have discovered a number of bugs, bad practices, and design issues in the popular LastPass password manager.
David Bisson reports.
NatWest Bank has made some videos telling you how to be safer online. A noble effort, but unfortunately their password advice is poor.
Learn more about the mistake they made in my own response video.
Make sure that you are using different passwords for every website that you access. Reusing passwords is just asking for trouble.
Watch my video to learn more.
A software engineer has shined a light on a potential weakness in 1Password that could expose unencrypted metadata about vault entries.
Read more in my article on the Hot for Security blog.
LastPass’s announcement has upset a lot of users, but should you dump the password manager for another product?
Guest contributor Bob Covello shares his thoughts.
It’s a real shame to see a company not helping its customer use safer passwords, especially in the wake of a data breach. Let’s hope TalkTalk gets a clue and sees sense soon.
Another website is found preventing security-minded users from pasting complex passwords into online forms.
British Gas customer Ben Woodward understands the benefits of having a complicated, hard-to-remember password rather than a dumb, easy-to-guess one.
Unfortunately, it doesn’t seem that British Gas agrees.