Please contact the 24/7 IT Help Desk at 412-624-HELP (4357) if you have any questions regarding this announcement. If you receive a notification from LastPass about a blocked login attempt, reset your LastPass password.If you have a LastPass Business (formerly LastPass Enterprise) account, it is already protected by the University’s Multifactor Authentication Service (Duo). MFA will protect your LastPass account in the event the password becomes compromised.
If you have a personal LastPass account, enable multifactor authentication (MFA) protection. Make sure your LastPass master password is strong, unique, and sufficiently random. Pitt IT advises that LastPass users take the following steps to ensure their LastPass master password is secure: Individuals who re-use the same passwords across multiple websites are at greater risk from this type of attack, which is known as “credential stuffing.” In short, whenever information from data leaks becomes available on the Internet, attackers attempt to those username and password combinations to log in to other websites, such as LastPass. LastPass has published a blog article that explains the attempted attacks and provides guidance on how to ensure your master password remains secure. It is important to note that LastPass itself has not suffered a data breach. This malicious activity targets LastPass users across the country, not just at the University of Pittsburgh. 
Pitt Information Technology is aware of media reports that bad actors are attempting to access users’ LastPass accounts using credentials and passwords obtained from unaffiliated third-party data breaches. 5K views 4 months ago LastPass 101 Passwordless login allows you to log in to LastPass using the LastPass Authenticator app instead of entering your master password through a browser on.
0 kommentar(er)
