...and the fun keeps on a-rolling. - ferg
---------- Forwarded message ---------- From: security curmudgeon <[email protected]> Date: Thu, May 5, 2011 at 11:02 AM Subject: [Dataloss] LastPass Loses Passwords for 1.25 Million Customers to Hackers To: [email protected], [email protected] http://www.businessweek.com/news/2011-05-05/lastpass-loses-passwords-for-1-25-million-customers-to-hackers.html LastPass Loses Passwords for 1.25 Million Customers to Hackers May 05, 2011, 12:03 PM EDT By Michael Riley May 5 (Bloomberg) -- LastPass, a company that offers to safeguard and simplify managing subscribers' online passwords, said hackers may have broken into its database and stolen information on as many as 1.25 million accounts. The company.s service allows customers to use one password with enhanced security features to access multiple password- protected accounts for online banking, Internet shopping, and other secure sites. The Vienna, Virginia-based company posted a message on its website late yesterday alerting customers to the breach in its security. Jeremy Conway, a researcher for the Portsmouth, New Hampshire, based cyber-security company NitroSecurity Inc., said the intrusion risks giving the hackers access to millions of different bank accounts, e-commerce sites and sensitive corporate networks. "This could be the nastiest password hack in history," said Conway. "They've disclosed just enough so that customers can make all sorts of wild assumptions about how big the problem may be." [..] _______________________________________________ Dataloss Mailing List ([email protected]) Archived at http://seclists.org/dataloss/ Unsubscribe at http://datalossdb.org/mailing_list -- "Fergie", a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawgster(at)gmail.com ferg's tech blog: http://fergdawg.blogspot.com/ _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
