Damn! You just let the cat out of the bag. Now I have to change mine!If your password is password then it's not hard to crack, these attacks target the low hanging fruit.
Damn! You just let the cat out of the bag. Now I have to change mine!If your password is password then it's not hard to crack, these attacks target the low hanging fruit.
Just a suggestion. Use Password2. That way you get upper and lower case plus numbers and it is one character longer. Easy to remember it as your second password.Damn! You just let the cat out of the bag. Now I have to change mine!
In that case, a good preventative password would be "BoxerBriefs"....these attacks target the low hanging fruit.
Add two more $$... for more accuracy and better protection.Thanks Amir. Just changed my passsword to BoseSucksAndCostsTooMuch$
On the idea of leaving password managers because of the LastPass thing.
Found this useful https://infosec.exchange/@epixoip/109585049354200263
IMO the usability of a password manager is far better than a notebook which will not be available from your office or while you travel.
Actually, this may be really a good idea, practical issues aside. Your passwords are disconnected from the net. But keyloggers remain a problem.What do you suggest, writing them on a notepad and putting in a drawer?
Seriously, if you have a unique password for every site, then you aren't going to remember 10+ login passwords (presuming they are decent passwords).
The only way to mitigate the LP breach is to change the passwords for the sites in your vault (that haven't been changed since before the breach), or at least enable MFA on those sites. Migration is pretty easy. You can export your LP vault to a text file then import it into your new PW manager of choice. Or just print them all out and keep it tucked under your tinfoil hat.how to migrate?
I have over a thousand passwords in LP, though most are trash
How are we on page 4 of this thread and no one has yet pointed out that the correct password we should all be using is correcthorsebatterystaple.
Try getting many (most?) services to accept a password without upper and lower case, numbers and special characters. It seems online services haven't got the memo!
But, a password shouldn't be something everyone knowsThanks Amir. Just changed my passsword to BoseSucksAndCostsTooMuch$
Audiophile-network-switches-need-a-powerconditioner-2Thanks Amir. Just changed my passsword to BoseSucksAndCostsTooMuch$