Zero day hole can pwn millions of LastPass users, all that's needed is a malicious site

[DJ Panda]

I think I am safe a little longer haven't hacked and gotten to my Avast Passwords yet.

 

[DardiM]

I think I am safe a little longer haven't hacked and gotten to my Avast Passwords yet.

You use a paid or free avast account ?

 

[DJ Panda]

You use a paid or free avast account ?

Everything I have from Avast is free.

 

[DardiM]

And there are a lot of limitations with free version ? Or only adds or things like that ?
On the password manager, for example.

 

[DJ Panda]

And there are a lot of limitations with free version ? Or only adds or things like that ?
On the password manager, for example.

Not really many limitations. Don't really know what to expect for a password manager. Shows all the sites you have with duplicate, strong, and hijacked passwords. When you decide to change a password on certain sites it can randomly generate one filled with letters, numbers, and symbols. I am happy with it.

 

[shmu26]

It will work only if you use LastPass to store the partial password, and then you will have to manually add the 3 characters during login. LastPass won't be able to successfully do auto-logins using this method -- but you already know that.

However, why give a malc0der access to most of the password ? It's insane - with only 3 characters needed to complete the complete password they will crack the entire password using softs designed to do so within a single day - probably only hours or even a few minutes.

they won't bother to even try to crack your measly password when they have caught so many that work right away.