Wladimir PalantDec 26, 2022

Writing more about #LastPassBreach feels like beating a dead horse. But I had a look at the official statement again and it is highly misleading. I felt the need to provide some context that #LastPass is willingly omitting.

“Again, it seems that LastPass attempts to minimize the risk of litigation (hence alerting businesses) while also trying to prevent a public outcry (so not notifying the general public). Priorities…”

https://palant.info/2022/12/26/whats-in-a-pr-statement-lastpass-breach-explained/

What’s in a PR statement: LastPass breach explained

The LastPass statement on their latest breach is full of omissions, half-truths and outright lies. I’m providing the necessary context for some of their claims.

Almost Secure
Show threadtomoz1Jan 2, 2023
@WPalant very interesting info and I have a practical questions : if you have a last pass account, what is the best way to delete all info safely on their server?
Show threadWladimir Palant
@tomoz1 This is not something you can tell from the outside. Especially not, when it comes to backup storage which is where the data leaked.
Jan 2, 2023 at 7:57amWeb
Show threadtomoz1Jan 2, 2023
@WPalant
well, then let's hope a delete via the site does a full delete of everything and not just stops me from accessing anything