Hackers broke into popular password manager LastPass this week, which raises some obvious questions: If the service you use to protect your passwords from getting compromised gets compromised, should you still use it? Is it really wise to store all our passwords in the cloud?
Is nothing sacred? LastPass, the service charged with keeping track of all our disparate online security measures with just one master password, was hacked last Friday—as detailed by the company’s own blog post published today. That is not good news.
Wouldn’t it be amazing if you could just walk up to your locker, glance at your wrist, and see the right combination appear on your smartwatch screen? Particularly if you multiply that by every lock and password you encounter over the course of a day?
We could all use a good self-audit on our passwords—bank accounts, credit cards, e-mails, social networks—but is it better to just let a password manager handle all of our passwords instead? Or should we still cook up a different password for each account on our own? What do you guys do?