LastPass attacker stole password vault data, showing Web2's limitations

Password management service LastPass was hacked in August 2022, and the attacker stole users’ encrypted passwords, according to a Dec. 23 statement from the company. This means that the attacker may be able to crack some website passwords of LastPass users through brute force guessing.

Notice of Recent Security Incident – The LastPass Blog

However, a recent Ethereum Improvement Proposal (EIP) aims to remedy this situation. Called “EIP-4361,” the proposal attempts to provide a universal standard for web logins that works for both centralized and decentralized applications.

If this standard is agreed upon and implemented by the Web3 industry, its proponents hope that the entire world wide web will eventually get rid of password logins altogether, eliminating the risk of password manager breaches like the one that has happened at LastPass.

LastPass attacker stole password vault data, showing Web2’s limitations

More Stories

Securitize adds Wormhole for multi-chain RWA tokens

Aethir partners with Filecoin to solve GPU shortage, boost AI

Bull cycles spark ‘some seemingly rational reason’ to compromise security: Ledger exec

You may have missed

Woman Sentenced to 8 Years in Prison After Failed Bitcoin Murder-for-Hire Plot

‘Microsoft of Blockchains:’ Bitwise Doubles Down on Ethereum’s Fundamentals

Court Orders New York Man to Pay $36M for Forex, Digital Asset Fraud

US Sentences Nigerian Darknet Fraud Leader to Five Years in Prison for $6M Scheme

Categories

Useful Links