LastPass says hackers had internal access for four days (opens in new tab)

(bleepingcomputer.com)

24 pointsolliepop3y ago7 comments

7 comments

This isn't the first time this company has been breached. I'd stay far away from this company. If you really need a centralized password repo, use 1password.

But if you can, I'd recommend self-hosting (VaultWarden) over any online service provider.

suprjami3y ago

I am still amazed anyone would use a proprietary password manager which stores in someone else's computer. That's the opposite of good password management.

themadturk3y ago

Which is why LastPass doesn't store your passwords on its servers, just a one-way hash.

2 more replies

milosmns3y ago

Did you mean BitWarden? Or really VaultWarden?

n8henrie3y ago

Based on the context of self-hosting, I assume the parent wrote correctly.

j / k navigate · click thread line to collapse