LastPass hacked, but says user data's safe


The password management service was hacked last week, but its layers of security prevented a serious breach. Here's what users should do to make sure they're unaffected.

Tl;dr: change your master password.

LastPass says in its blog entry, "Encrypted user vaults were not compromised." This is a critical fact because changing your master password will immediately make the stolen password information useless. If crackers had stolen vaults, they would be able to churn on them forever or return to them to the future and crack them with more advanced or powerful technology. Since people often don't change passwords for years at a time or forever, that could have still been a risk.

LastPass also advises changing your password at any other account for which you use the identical password

Photo: Shutterstock.