<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=utf-8"><meta name=Generator content="Microsoft Word 15 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
span.EmailStyle18
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri",sans-serif;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=EN-US link=blue vlink=purple style='word-wrap:break-word'><div class=WordSection1><p class=MsoNormal><span style='font-size:12.0pt;color:#1F497D'>Folks<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:12.0pt;color:#1F497D'>I think we should have a more in-depth discussion on “passwords” at the next session or when time is open. <o:p></o:p></span></p><p class=MsoNormal><span style='font-size:12.0pt;color:#1F497D'>George<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:18.0pt;color:#1F497D'><o:p> </o:p></span></p><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From:</b> LCTG <lctg-bounces+ggamota=stma-llc.com@lists.toku.us> <b>On Behalf Of </b>Rich Moffitt<br><b>Sent:</b> Thursday, December 29, 2022 8:16 AM<br><b>To:</b> Drew King (dking65@kingconsulting.us) <dking65@kingconsulting.us>; Lex Computer Group <LCTG@lists.toku.us><br><b>Subject:</b> Re: [Lex Computer & Tech Group/LCTG] LastPass confirms users' password vaults were stolen by hackers<o:p></o:p></p></div><p class=MsoNormal><o:p> </o:p></p><div><p class=MsoNormal>The fact that LastPass infrastructure has been breached multiple times and are such a big target are reasons I don't feel like using them anymore. The vaults themselves are still encrypted, and (provided a good master passphrase was used) aren't likely to be cracked in a timely fashion. I'm actually more concerned about the plaintext URLs and other personal data that were scooped up as part of the breach. Some of these could include access tokens or personally identifiable data that could assist an attacker in compromising accounts without the credentials themselves.<o:p></o:p></p><div><p class=MsoNormal><o:p> </o:p></p></div><div><p class=MsoNormal>Fortunately, there are good alternatives out there: trusty old Keepass for DIYers, Bitwarden for people who like browser integration and either want to host their own or use a decent free tier service, and 1Password / Dashlane / etc. for people looking for other convenience features and are willing to pay for them.<o:p></o:p></p></div><div><div><p class=MsoNormal><o:p> </o:p></p></div><div><p class=MsoNormal>-Rich<o:p></o:p></p></div></div></div><p class=MsoNormal><o:p> </o:p></p><div><div><p class=MsoNormal>On Tue, Dec 27, 2022 at 4:51 PM Drew King (<a href="mailto:dking65@kingconsulting.us" target="_blank">dking65@kingconsulting.us</a>) <<a href="mailto:dking65@kingconsulting.us" target="_blank">dking65@kingconsulting.us</a>> wrote:<o:p></o:p></p></div><blockquote style='border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-right:0in'><div><p class=MsoNormal style='margin-bottom:12.0pt'>All,<br><br>Some LastPass breach update information:<br><br>Android Central: LastPass confirms users' password vaults were stolen by hackers.<br><a href="https://www.androidcentral.com/apps-software/lastpass-user-data-security-breach-incident" target="_blank">https://www.androidcentral.com/apps-software/lastpass-user-data-security-breach-incident</a><o:p></o:p></p><div><p class=MsoNormal style='margin-bottom:12.0pt'>-- <br>Drew King<o:p></o:p></p></div></div><p class=MsoNormal>===============================================<br>::The Lexington Computer and Technology Group Mailing List::<br>Reply goes to sender only; Reply All to send to list.<br>Send to the list: <a href="mailto:LCTG@lists.toku.us" target="_blank">LCTG@lists.toku.us</a> Message archives: <a href="http://lists.toku.us/pipermail/lctg-toku.us/" target="_blank">http://lists.toku.us/pipermail/lctg-toku.us/</a><br>To subscribe: email <a href="mailto:lctg-subscribe@toku.us" target="_blank">lctg-subscribe@toku.us</a> To unsubscribe: email <a href="mailto:lctg-unsubscribe@toku.us" target="_blank">lctg-unsubscribe@toku.us</a><br>Future and Past meeting information: <a href="http://LCTG.toku.us" target="_blank">http://LCTG.toku.us</a><br>List information: <a href="http://lists.toku.us/listinfo.cgi/lctg-toku.us" target="_blank">http://lists.toku.us/listinfo.cgi/lctg-toku.us</a><br>This message was sent to <a href="mailto:rich@richmoffitt.org" target="_blank">rich@richmoffitt.org</a>.<br>Set your list options: <a href="http://lists.toku.us/options.cgi/lctg-toku.us/rich@richmoffitt.org" target="_blank">http://lists.toku.us/options.cgi/lctg-toku.us/rich@richmoffitt.org</a><o:p></o:p></p></blockquote></div></div></body></html>