+

Cookies on the Business Insider India website

Business Insider India has updated its Privacy and Cookie policy. We use cookies to ensure that we give you the better experience on our website. If you continue without changing your settings, we\'ll assume that you are happy to receive all cookies on the Business Insider India website. However, you can change your cookie setting at any time by clicking on our Cookie Policy at any time. You can also see our Privacy Policy.

Close
HomeQuizzoneWhatsappShare Flash Reads
 
  • Home
  • tech
  • Password service LastPass was forced to increase its security

Password service LastPass was forced to increase its security

James CookJan 18, 2016, 15:04 IST

A broken lock holds a metal door shut after Israeli soldiers conducted house-to-house searches in the area for wanted militants February 20, 2003 in the Casbah of the West Bank town of Nablus. The Israeli Defense Force (IDF) has arrested approximately 40 Palestinians over the last 24 hours in operations in the ancient market area.David Silverman/Getty Images

Password manager LastPass was forced to up its security measures following the release of research showing just how easy it is to convince its customers to hand over their password, The Register reports.

Advertisement

LastPass is a piece of software that keeps lots of different passwords in one place. It makes it easier to manage lots of complex passwords.

But security researcher Sean Cassidy published a blog post that showed how it could take criminals "less than a day" to build a spoof version of LastPass that could convince people to hand over their email address and passwords.

Sean Cassidy

In response to Cassidy's post, LastPass upped the security requirements for people trying to log into the service. Anybody logging into the service now has to visit their email inbox and manually approve every sign-in attempt. That makes it harder for criminals to steal any passwords.

Advertisement

LastPass published a blog post responding to Cassidy's research. It says that its verification procedure "significantly reduces the threat of this phishing attack." It said that users with two-factor authentication enabled (where multiple devices are needed to log into a service) would still have to use email verification to avoid any fake versions of the site.

NOW WATCH: How Apple makes their Geniuses always seem so happy and helpful

Please enable Javascript to watch this video
You are subscribed to notifications!
Looks like you've blocked notifications!
Latest Stories
Govt proposes task force to push for 500 GW renewable energy capacity target
Indian smartphone shipments grow 5.6% in Q3 2024, Vivo leads the market
Oscar-winning director Steve McQueen speaks out on prostate cancer diagnosis and recovery journey
India's BPM industry to see sharp demand for AI-skilled talent over the next 3-5 years
JioStar announces plans starting at ₹15 – here’s everything you need to know
Trending News
Next Article
Next Story
Popular Categories
Trending Right Now

Copyright @ 2024. Times Internet Limited. All rights reserved.For reprint rights. Times Syndication Service.