Your Password Manager Could Be Putting Your Security at Risk. Here's How to Fix It

By Manyonge | Blockchain Buzz | 28 Dec 2022

LastPass is a password manager that allows users to generate, store, and manage their passwords. It has been around for a while and was once a convenient and easy-to-use tool with a browser extension and mobile app. However, recently the company announced that it had been hacked. This is concerning news for the approximately 33 million users of the service.

Upon investigation, it was revealed that the hacker was able to gain access to all of the encrypted vaults on LastPass. This means that in order to decrypt a vault, the attacker would need to guess the master password. LastPass uses a password-based key derivation function called PBKDF2 to split the master password into two parts: an encryption key and an identifier for a vault. The vaults are encrypted with AES-256. While PBKDF2 makes it difficult to brute force larger passwords, it is still a concern that the hacker was able to access all of the encrypted vaults. The company claimed that no master passwords were compromised in the hack.

Get Hack-Proof: A Guide to Choosing the Right Password Manager

The importance of strong and secure passwords cannot be overstated in today's digital age. With so much of our personal and professional lives taking place online, it is crucial to protect ourselves from cyber threats by using robust passwords and choosing the right password manager.

A password manager is a software tool that helps users generate, store, and manage their passwords. The idea behind using a password manager is to have a unique, strong password for each of your online accounts, rather than using the same password for multiple accounts or using weak passwords that are easy to guess. This can be a daunting task for individuals who have a large number of online accounts, which is where a password manager comes in.

There are many different password managers available, each with its own unique features and capabilities. It is important to do your research and choose a password manager that meets your specific needs and security requirements. In general, there are a few key factors to consider when selecting a password manager.

First and foremost, it is important to choose a password manager that uses end-to-end encryption. This means that your passwords are encrypted on your device before they are transmitted to the password manager's servers, and they remain encrypted while they are stored on the servers. This ensures that even if the password manager's servers were to be hacked, the attacker would not be able to access your passwords.

Another important factor to consider is whether the password manager has a local component. This means that a copy of your password database is stored on your device, rather than just on the password manager's servers. This can be beneficial in the event that the password manager's servers are unavailable or if you need to access your passwords when you are not connected to the internet.

It is also a good idea to choose a password manager that uses a strong open source encryption library, such as AES-256. This ensures that your passwords are encrypted using a reliable and secure encryption method.  

Another key factor to consider is whether the password manager is open source. Open source password managers are developed by a community of volunteers, and the source code is available for anyone to review and audit. This can provide added transparency and security, as the code can be examined by experts to ensure that it is secure. A good example here is Bitwarden. It comes recommended by many experts.

In addition to these technical considerations, it is also important to choose a password manager with a good design and implementation. A well-designed password manager should be easy to use and intuitive, with clear instructions and a user-friendly interface.

It is also essential to choose a password manager that is transparent about security issues. If a security vulnerability is discovered in a password manager, it is important that the company is upfront about the issue and works quickly to fix it. A password manager that is open and transparent about security is more likely to be trusted and used by consumers.

Finally, it is important to choose a password manager with a solid team and good leadership. A password manager with a strong team and clear vision is more likely to stay up-to-date and be responsive to the needs of its users.

Aside from Bitwarden, another recommended password manager you can check out is 1Password.

Good Password Hygiene

In addition to choosing the right password manager, it is also important to practice good password hygiene. This includes using strong, unique passwords for all of your online accounts and avoiding using the same password for multiple accounts. It is also a good idea to use two-factor authentication whenever possible, as this adds an extra layer of security to your accounts.

Another important aspect of password hygiene is regularly reviewing and updating your passwords. It is a good idea to periodically change your passwords, especially if you suspect that your account may have been compromised or if you have not changed your password in a long time.

It is also essential to be vigilant about security and stay informed about potential threats. This includes staying up-to-date on the latest security news and best practices, as well as being cautious when using cloud-based services. Cloud-based services can be convenient, but it is important to ensure that the company you are trusting with your sensitive data has strong security measures in place and a good track record.

In summary, choosing the right password manager and practicing good password hygiene are essential to protect yourself and your personal information online. It is important to do your research and choose a password manager that meets your specific needs and security requirements, and to use strong, unique passwords and regularly review and update them. By being vigilant and staying informed about potential threats, you can take control of your online security and protect yourself from cyber threats. So, it is always better to be safe than sorry.

Resources

  1. https://blog.lastpass.com/2022/12/notice-of-recent-security-incident/
passwords Password manager lastpass 1Password Bitwarden

How do you rate this article?

3
Manyonge
Manyonge

I'm just a crypto fanatic looking to learn and share the revolution. Join me on my journey!

Blockchain Buzz
Blockchain Buzz

Blockchain Buzz is the perfect place for anyone looking to learn more about the world of cryptocurrency and blockchain technology. I provide the latest news and updates, along with expert analysis, all in easy-to-understand language. Join me as I delve into the exciting world of blockchain and cryptocurrency, and stay up-to-date on the latest trends and developments in the industry

Send a $0.01 microtip in crypto to the author, and earn yourself as you read!

20% to author / 80% to me.
We pay the tips from our rewards pool.
X: The World’s Largest Digital Psychiatric Experiment - How Elon Musk Turned Twitter Into a Real-Time Study of Human Psychology X: The World’s Largest Digital Psychiatric Experiment - How Elon Musk Turned Twitter Into a Real-Time Study of Human Psychology
Cryptonator`s

Cryptonator`s

1 Jun 2026
2 minute read

Earning £1M Through Crypto: Portfolio Trackers Earning £1M Through Crypto: Portfolio Trackers
Tiero

Tiero

12 hours ago
3 minute read

The DAILY SNAP Zone 024 - Scarlet Witch The DAILY SNAP Zone 024 - Scarlet Witch
Seven-NATE-Nine

Seven-NATE-Nine

3 Jun 2026
8 minute read