This isn't great but it's not that big of a deal either. A lot of companies got bit by the Klue breach but it's not like your vaults are being accessed.
This isn't great but it's not that big of a deal either. A lot of companies got bit by the Klue breach but it's not like your vaults are being accessed.
The vaults were accessed years ago
The encrypted vaults, yes. Ideally they are worthless when the master password is sufficiently complex
Yes, in a separate breach.
>The vaults were accessed years ago
> Yes, in a separate breech.
Not nearly that cut and dry.
Many, not all encrypted vaults leaked out. If you lost data it was because you used a weak master password for that vault.
My point is the same - nothing about this breach implies vault access, it explicitly is related to the Klue breach, which contains some customer PII.
> If you lost data it was because you used a weak master password for that vault.
Even this is more complex (horrible pbkdf2 defaults, you're welcome for getting lastpass to increase them btw that was me) but it isn't relevant, no vaults are accessed in this breach.