There has been a security breach at the password management service LastPass, and the hackers now have access to the encrypted vaults of all 33 million users.
Last Pass Got Hacked
Recently, a hacker broke into the computers of LastPass, a password manager used by more than 33 million individuals across the globe, and stole confidential data and the company's source code. Based on Thursday's blog post, the company does not believe that any customer credentials were compromised during the attack.
Since the vaults have already been cloned, there is no way to remedy or patch the problem. Vaults are accessible to hackers even after a user has deleted their account or stopped using LastPass. Having a lengthy master password would have helped safeguard the most recent vault, but the stolen one was not changed. Once inside the encrypted vaults, the hackers may attempt brute force methods on the master passwords. This procedure is always possible, regardless of the technology in use.
To add insult to injury, hackers may use the information associated with each vault to focus on breaking into the most lucrative vaults first. LastPass users should update their master passwords often since their information might be leaked and sold on the dark web.
More info: Notice of Recent Security Incident - The LastPass Blog
💀Note: Don't Trust anything on the Web