A lot of these password management tools seem pretty good and id give them all an honest look. Joe siegrist of lastpass talks with steve gibson and leo laporte about the recent news that logmein has purchased lastpass. Joe siegrist talks with steve gibson and leo laporte about the recent news that logmein has purchased lastpass. Lastpass acquired by logmein it security spiceworks page 7. Plextrac has finally solved the pain of security assessment reporting. As a software company, bugs and issues arise naturally and while theyre uncomfortable and concerning, theyre part of the natural process that make lastpass as secure as it is. Joe siegrist of lastpass security now 529 duration. We invite you to read, add to, and amend our show notes. The password manager patches a major security flaw that could have let hackers steal your passwords and manipulate your lastpass account. Steve gibson, the man who coined the term spyware and created the first antispyware program, creator of spinrite and shieldsup, discusses the hot topics in security today with leo laporte.
Realplayer is an ugly media player developed by realnetwork and used mainly for its browsers plugin supporting the proprietary file formats of its developer. Steve gibson analyzes the shmoocon presentation on lostpass and lastpass response. So far, lastpass has yet to comment on the takeover. Pages other brand software lastpass videos and lastpass. This is true alright, so we know what the problem is. Lastpass keeps your information private, secure, and hidden even from us. It also includes support for bookmarklets logmein, inc. Last months patch tuesday, this montha gdprinspired lawsuit filed by privacy internationalcheck these two router ports to protect against a new botnet thats making.
Steve explains the nature of the need for high security passwords, the problem that need creates, and the way the design of lastpass completely and in every way securely answers that need. With lastpass to manage your logins, its easy to have a strong, unique password for every online account and improve your online security. Raise your hand if youre guilty of overusing the forgot password function. Publication date 20120919 usage attributionnoncommercialshare alike 3. Steve gibson is something of a controversial figure, but damn if he isnt thorough. Security researcher tavis ormandy came up with a unique, highly sophisticated way to hack lastpass while he was in the shower.
By clicking the autochange button, lastpass will instantly launch twitter and change your password for you. Classical heap overflow during the handling of the ivr files. Lastpass manages your passwords and online life, so you dont have to. Dec 18, 2019 corsair is now owned by pc desktop maker origin. The lastpass security incident, what i did ghacks tech news. Simple password sharing, smart password storage, and an easytomanage dashboard makes teams an ideal solution for businesses of 50 or less. Lastpass is a critical part of protecting our business while giving employees peace of mind that they wont forget their passwords. The big news of 2010 was stuxnet boy did that make an impression. Lastpass simplifies your online life by remembering your passwords for you.
Leo laporte brings some of the most interesting personalities in technology together to talk about the most important issues. This is what convinced me to trust it, and it hasnt let me down. After catching up with the weeks security updates and other security related news, steve and leo discuss the many modes of operation of proxied web surfing which are used to bypass firewalls and internet filters, aid free speech, and alter the contents of web pages retrieved from the internet. Steve thoroughly evaluates lastpass, explains why high security passwords are necessary, and tells us how lastpass makes storing those passwords secure. I store my encrypted keychain in dropbox and use that to share it with my other computers and my phone. Tried keepass and lastpass but i didnt like them as much. Molekule is reimagining the future of clean air, starting with the air purifier. So ill make a backup copy of the lastpass vault offline so that i have it all. For 10% off your first air purifier, visit and enter promo code twit10 at checkout.
Joe siegrist and the lastpass acquisition, patch tuesday, another dent in. He also revisited the subject and how it relates to the national security agency in security now podcast episode 421. This week we examine a bunch of wannacry followups, including some new background, reports of abilities to decrypt drives, attacks on the kill switch, and more. It was the second show to premiere on the twit network, launching in summer 2005. This means that all sensitive data is encrypted locally at the users device with a key that is never shared with lastpass.
Ms27 an attacker could plug in a maliciously formatted usb device to a computer and use a specially crafted device descriptor to execute code at the kernel level. Lastpass is trusted by industry experts worldwide you deserve the best in security. Ive been a lastpass personal users for years, when i thought about bringing in the enterprise product, i emailed their support. Zoom fixes security, earn it is evil, tor in trouble. The standard version of lastpass comes with a web interface, but also includes plugins for various web browsers and apps for many smartphones. Top security stories of the decade on this eve of 2020, we look back over the hacks of the past decade. The first episode, as the worm turns, was released on august 19, 2005. And sometimes something, if i dont have it, its like, oh, shoot. Internet explorer 0day exploit, lastpass sentry, bmw key cloning, and more.
This week we discuss and look into digicerts acquisition of symantecs certificate authority business unit, logmeins lastpass premium price hike, the troubling case of marcus hutchins postdefcon arrest, another instance of wannacrystyle smbv1 propagation, this weeks horrific iot example, some hopeful iot legislation, the consequences of rooting early amazon echoes, the drip drip drip of. May 10, 2019 its time for security now episode o x100 256 coming up steve takes a look at a utility i wouldnt live without lastpass its the best way to keep your passwords or ease it steve gibson visit his seal of approval next on security now neck casts you love from people you trust this is tweet audio bandwidth for security now is provided by winamp. Try plextrac free for onemonth onpremises or in the cloud with no contracts or risks. Jason howell shows how some of those new features can be brought to your device right now thanks to the hardworking android developers on the play store.
Lastpass lastpass introducing inapp password autofill. As a password manager, security is our top priority. Then we examine the revelations about the current state of internet user tracking arising from mozillas firefox tracking protection instrumentation. This is one of the few shows on twit that i can trust to be completely factual in nature and not filled with nonsense, but this time it let me down on what one of the most important security topics.
Plus, we now give all our employees personal lastpass memberships, too thats how important security is to us. However, the thing that won me over with lastpass was that a couple of years ago when there actually was a security issue they were very quick to alert their users and very transparent about what was going on. Lastpass employs localonly encryption, which means that only you with your master password can decrypt and access your data. They can also take your next conference online with general sessions and break out sessions with speakers live instudio or remotely at twit2. Ive been a lastpass personal users for a numbers of years. This is a general question about lastpass security. Leaking data from airgapped systems by turning the powersupplies into speakersan authorization bypass in saltstackadobes big last tuesday, non. Login into all your favorite iphone apps with ease, with lastpass password autofill. Security now hosted by steve gibson, leo laporte steve gibson, the man who coined the term spyware and created the first antispyware program, creator of spinrite and shieldsup, discusses the hot topics in security today with leo laporte. May 04, 2018 if youre using lastpass, after you run the security challenge youll see the option to autochange any twitter passwords stored in your account. Android 11 is still months away, but we already know about many features of the upcoming release. But in 2015, it had to address consumer worries about possible product changes after logmein.
Leo and i discuss the weeks most interesting recent security events and a bit of miscellany. Back in 2010, steve gibson and leo laporte did an entire episode of their security now podcast devoted to lastpass. Real player heap buffer overflow vulnerability no patches yet security focus. Fun, relaxed, informative and always entertaining, count on twit for the best tech podcasts in the world.
What happens if lastpass gets hacked our security model. Jan 31, 2019 lastpass simplifies your online life by remembering your passwords for you. Lastpass is a freemium password manager that stores encrypted passwords online. Apr 02, 2020 security now mp3 steve gibson, the man who coined the term spyware and created the first antispyware program, creator of spinrite and shieldsup, discusses the hot topics in security today with leo laporte. Following another week overfilled with interesting security related news, steve and leo spend an hour and a half diving deeply into an updated and likely very close to correct understanding of the coin payment card, news on the cryptolocker front, a close look at a patent troll case that has so far done the wrong way, and much more.
Dec 14, 2014 after finding out that there might have been a security breach at lastpass, a company known for their online password management solution, i quickly changed my master password and started to think about possible consequences. Chinas proposal to rebuild the internet is an authoritarian nightmarebruce schneier on covid19 contact tracing appspolitical correctness hits cybersecuritydhss cisa says no to 3rdparty dohpowersupplay. Lastpass parent company sold to private equity firms pcmag. In july 2010, lastpass s security model was extensively covered and approved of by steve gibson in his security now podcast episode 256. This week we discuss and look into digicerts acquisition of symantecs certificate authority business unit, logmeins lastpass premium price hike, the troubling case of marcus hutchins postdefcon arrest, another instance of wannacrystyle smbv1 propagation, this weeks horrific iot example, some hopeful iot legislation, the consequences of rooting early amazon echoes, the drip. Weve implemented aes256 bit encryption with pbkdf2 sha256 and peruser salted hashes to ensure complete security in the cloud. For some time now, i had been thinking about switching to an offline password management solution. Twit tv on stage, wrapping up that high5 sarah whited flickr nexus twit.
12 1026 132 655 1569 1102 1378 163 44 532 961 1214 158 839 310 830 1311 842 432 28 1283 1325 1234 1336 508 697 822 863 1 1422 215 348 763 1458 429 87 1208 583 729 401 788 1152