LastPass users targeted in phishing attacks good enough to trick even the savvy... - Random

arstechnica , 2 months ago

LastPass users targeted in phishing attacks good enough to trick even the savvy

Campaign used email, SMS, and voice calls to trick targets into divulging master passwords.

https://arstechnica.com/security/2024/04/lastpass-users-targeted-in-phishing-attacks-good-enough-to-trick-even-the-savvy/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social

Reply

Report

Activity

Open original URL

Copy original URL

Copy Mbin URL

Loading...

bugmenot , 2 months ago

@arstechnica solution: don't use lastpass

Reply

Report

Activity

Open original URL

Copy original URL

Copy Mbin URL

Loading...

BrianPierce , 2 months ago

@arstechnica

Key point is this: "companies and end users should always use multi-factor authentication to lockdown accounts when possible and ensure it’s compliant with the #FIDO standard when available. #MFA available through push notifications or one-time passwords provided by text, email, or authenticator apps are better than nothing, but as events over the past few years have demonstrated, they are themselves easily defeated in credential phishing attacks" #webauthn #2fa

Reply

Report

Activity

Open original URL

Copy original URL

Copy Mbin URL

Loading...

birdpoof , 2 months ago

@arstechnica
Spear-phishing is only getting worse thanks to AI, too. Everything is fine.

Reply

Report

Activity

Open original URL

Copy original URL

Copy Mbin URL

Loading...

Bradcopter , 2 months ago

@arstechnica LastPass can't help but catching every L

Reply

Report

Activity

Open original URL

Copy original URL

Copy Mbin URL

Loading...

dustcircle , 2 months ago

@arstechnica Can never bring myself to use #Lastpass.
I use #BitWarden. FREE and SECURE

Reply

Report

Activity

Open original URL

Copy original URL

Copy Mbin URL

Loading...