Category: General IT Security

The LastPass security breach compromised the password vaults and personal details of millions of LastPass users, meaning now is the time to immediately change all your passwords and passcodes if you were using LastPass.

This security breach has raised concerns about data security and safety. Many people are wondering how to further protect their personal data and information. While switching to a different password manager might be a good idea, good security practices can be a safer solution.

Ways to Protect Your Personal Information Online

After the LastPass security breach, you would want to ensure your information stays protected on the internet. Here are some ways to keep your data safe:

Create a Strong Password

Firstly, you must create a strong password with a minimum of 12 characters and a mixture of symbols, numbers, and lower and upper case alphabets. Using pass phrases is a great way to have a strong password that is easy to remember. Never reuse the same password for different accounts.

Move to Another Password Manager

You might be tempted to give up on password managers after the LastPass breach. However, a good password manager is a great way to keep your accounts and personal details safe. 1Password is one of the best password managers that use secret keys to keep the vaults safe. If you are looking for a more affordable option, then Bitwarden could be a good option.

Using A Security Key

Two-Factor Authentication (2FA) is an added security measure to your passwords. It is a second confirmation that requires you to enter a code sent to your phone to gain access to an account. Banks often use this security key to secure your information.

Avoid Using Password Hints

While it is common knowledge to be careful when using password hints and passwords, everyone doesn’t practice this. It takes extensive technical skills and knowledge to decrypt passwords but often, password hints make it easier for hackers to crack the code. These hints can easily give away your passwords. Therefore, either stop adding password hints or use one that doesn’t easily give away the password.

Immediate Steps to Take to Protect your Company’s Information

This breach is certainly concerning if you have been using LastPass for your organization. Here are a few steps the LastPass administrator must take to protect the company’s information:

• Disallow the reuse of the master password for everyone. The master password should be unique
• All employees must be required to change their passwords, particularly if they have used them for another website
• Add in a Multifactor authentication (MFA) for everyone in the organization for added security
• Require PIN code for all mobile apps
• Prohibit disabling MFA through email to keep all accounts protected

Take Actions to Keep Yourself Protected

The LastPass security breach, regardless of whether you were using it or not, has been a major reminder of how significant it is to create strong passwords and include additional security measures. Weaker passwords and lack of security measures pose great risks for your personal information getting leaked. Take better measures to avoid this risk and enhance your overall security. If you need help or have any questions about keeping yourself and your company protected – reach out to our security experts.