Twitter Inc removed a feature in the past few days that promoted suicide prevention hotlines and other safety resources to users looking up certain content, according to two people familiar with the matter who said it was ordered by new owner Elon Musk.
Also concerning is the fact that user vaults are now in the hands of the threat actor. While cracking the password hashes would require massive amounts of resources, it’s not out of the question, particularly given how methodical and resourceful the threat actor was.
Dan Goodin and Ars Techica should be embarrassed about their reporting on this story. Yes someone MAY have your Lastpass vault. I use 2 factor Authentication, so this means nothing. If you don’t use 2 factor, it means if the bad guys aim a supercomputer at YOUR vault only, in about 50,000 years, that computer will probably crack it, and get your passwords. It will have cost millions in compute power, but they MAY get you Youtube password! OMG!
I have one question. In 100 years, will you, or anyone you know care? Why would they pick YOUR vault? If you are the head of the NSA or a spy in the Kremlin, your data might be valuable, but not mine, and probably not yours.
If a hacker can access this site using may password, stored in Lastpass, in a hundred years,I will be long dead, and so will this domain, my bank account, and my Twitter account.
PLEASE Ars Technica, focus on the real security issues, Phishing, browser and operating system vulnerabilities, and social engineering. Or perhaps Crypto scams. Even The Donalds NFT card scam. Not a theoretical risk from Lastpass.
More from this Clickbate on Ars:
LastPass customers should ensure they have changed their master password and all passwords stored in their vault. They should also make sure they’re using settings that exceed the LastPass default. Those settings hash stored passwords using 100,100 iterations of the Password-Based Key Derivation Function (PBKDF2), a hashing scheme that can make it infeasible to crack master passwords that are long, unique, and randomly generated. The 100,100 iterations is woefully short of the 310,000-iteration threshold that OWASP recommends for PBKDF2 in combination with the SHA256 hashing algorithm used by LastPass. LastPass customers can check the current number of PBKDF2 iterations for their accounts here.
Whether they’re a LastPass user or not, everyone should also create an account on Have I been Pwned? to ensure they learn of any breaches affecting them as soon as possible
Say no more. – Phil Stephens
I I’m shocked, and to be honest a little afraid, but in Australia we seem to have just decided that we have to live with COVID-19.
For two years Australia live the world in keeping COVID at bay. We closed borders, focused on vaccinating citizens and ensured masks, sanitiser, and distancing rules and were to protect Australians from the virus.
It succeeded, despite a few mistakes, but with a election drawing near, and the public getting restless, state and federal governments chose to abandon most restrictions and throw their country open to travel and to visitors.
The results are graphic and clear to see. Uur medical system is staggering under the load of people being infected on a daily basis.
Most of the infections are relatively minor because the majority of the Australian population has been vaccinated and many have also had a booster shot meaning that most cases are quite mild.
However the number of infected medical staff and ambulance crew is so high that hospitals all are struggling to maintain adequate services under the load of incoming cases.
Are we really so selfish that we can’t wear masks in public, especially at “spreader events” were large crowds gather in the interest of the lives of our elderly and at-risk friends and family?
Thanks to the ABC for an excellent discussion of the issues here:
“We seem to have closed our eyes to the suffering and the deaths that are still occurring due to Omicron, so I think it’s bordering on irresponsible,” Professor Toole said.
Christine Negroni is an amazing aviation reporter, so to see her offer such a glowing review of this book makes it a must for me!
Thanks Christine, and thanks Peter Robinson.
In the world of air accident investigations, finding out what led to a crash is followed by finding out why.
Why is critical. That’s one reason I often write about the fallacy of attributing an accident to “pilot error”.
Pilots (mechanics, designers, schedulers, dispatchers, flight attendants, etc.) will make mistakes, that is inevitable. Tracking those errors upstream to see what in the system led to those mistakes is how aviation gets safer. Or, as Key Dismukes, one of my favorite human factors scientists once told me, “The airplane, the designer, and the pilot are part of a complex system. Under certain circumstances, things happen that leave the crew trying to figure out what’s going on.”
What could POSSIBLY go wrong??
According to a new report by Unisys, 61% of hybrid and remote workers feel primarily responsible for maintaining their digital security, yet only 21% are aware of sophisticated online threats.
The survey identified a widespread lack of consumer awareness on avoiding and addressing online threats. Two out of five (39%) people report not being wary of clicking on suspicious links, despite phishing attacks accounting for more than 80% of reported security incidents. Just 21% are aware of more sophisticated scams like SIM jacking, which is when a scammer gets a user’s phone number transferred to a phone they control.
Additionally, two out of five (39%) are not wary of clicking on links in text messages, emails, or social media. Fewer than half (44%) are aware of so-called SMiShing, which is where a scammer texts asking for personal or financial information, and only a quarter (24%) know which organization or department in their company to report scams to.
Almost half (45%) in the U.S., Australia, and New Zealand have downloaded or installed software not approved by their IT department, typically because these other apps are ones that they use in their personal life (42%), or because they are perceived to be better than those provided by their company (42%).
Kamala Harris becomes first woman to be acting US president — for 85 minutes — while Biden undergoes colonoscopy
Now that is a REAL first.