No Last Name Needed
  • Communities
  • Create Post
  • heart
    Support Lemmy
  • search
    Search
  • Login
  • Sign Up
Leo@lemmy.linuxuserspace.show to Technology@lemmy.worldEnglish · 1 year ago

1Password discloses security incident linked to Okta breach

www.bleepingcomputer.com

external-link
message-square
46
fedilink
257
external-link

1Password discloses security incident linked to Okta breach

www.bleepingcomputer.com

Leo@lemmy.linuxuserspace.show to Technology@lemmy.worldEnglish · 1 year ago
message-square
46
fedilink
  • GigglyBobble@kbin.social
    link
    fedilink
    arrow-up
    7    ·
    edit-2
    1 year ago

    I hope they don’t have your master password either. The decryption key sounds like just a longer password or salt with extra steps. What if the generation algo is cracked?

    Also, you can go multi-factor with every password manager I know.

    • qqq@lemmy.world
      link
      fedilink
      English
      arrow-up
      7      ·
      edit-2
      1 year ago

      They don’t have your password in any form. The random key is generated with a CSPRNG, we don’t know how to crack those. They aren’t hiding behind secrets: it’s all documented right here https://1passwordstatic.com/files/security/1password-white-paper.pdf

      1Password is quite good.

      • dangblingus@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        arrow-down
        9        ·
        1 year ago

        Not good enough clearly.

        • KairuByte@lemmy.dbzer0.com
          link
          fedilink
          English
          arrow-up
          2          ·
          1 year ago

          You clearly don’t understand what happened, nor what it would take to get into a users password store.

        • PoliticalAgitator@lemm.ee
          link
          fedilink
          English
          arrow-up
          1          ·
          1 year ago

          Not as clearly as you seem to think. You’ll struggle to find qualified people with criticism of their response.

Technology@lemmy.world

technology@lemmy.world

Subscribe from Remote Instance

Create a post
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !technology@lemmy.world

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

  • @L4s@lemmy.world
  • @autotldr@lemmings.world
  • @PipedLinkBot@feddit.rocks
  • @wikibot@lemmy.world
Visibility: Public
globe

This community can be federated to other instances and be posted/commented in by their users.

  • 4.44K users / day
  • 10.6K users / week
  • 18.1K users / month
  • 35.3K users / 6 months
  • 1 local subscriber
  • 59K subscribers
  • 12.1K Posts
  • 543K Comments
  • Modlog
  • mods:
  • L3s@lemmy.world
  • L3s@fry.gs
  • L4sBot@fry.gs
  • L4sBot@lemmy.world
  • enu@lemmy.world
  • BE: 0.19.5
  • Modlog
  • Legal
  • Instances
  • Docs
  • Code
  • join-lemmy.org