LastPass security breach linked to $35 million stolen in crypto heists
www.theverge.com
Researchers found that almost every victim was a LastPass user.

More than $35 million has been stolen from over 150 victims since December — ‘nearly every victim’ was a LastPass user::Security experts believe some of the LastPass password vaults stolen during a security breach last year have now been cracked open following a string of cryptocurrency heists

  • lazynooblet@lazysoci.alEnglish
    3·
    10 months ago

    Absolutely, Keepass is a great alternative to cloud managed password managers.

    You are also vulnerable to keyloggers or clipboard captures

    Keepass (and most password managers) are vulnerable to this as well.

    • jarfil@lemmy.worldEnglish
      1·
      10 months ago

      True, but KeePass has some countermeasures, like wiping the clipboard after some time, sending the password directly to a browser extension, or entering the master password on a “secure desktop” (technically not all that secure, but more secure than the lack of it).

    • RootiestEnglish
      1·
      10 months ago

      Keepass (and most password managers) are vulnerable to this as well.

      Not if you use the browser extension

      Plus it does automatically clear the clipboard after a short time which isn’t perfect but it’s still an improvement over using a text file