Madivelopa a LastPass achinsinsi bwana, amene ntchito ndi anthu oposa 33 miliyoni ndi oposa 100 makampani, anadziwitsa owerenga za chochitika chimene owukira anatha kupeza mwayi makope zosunga zobwezeretsera yosungirako ndi deta ya owerenga utumiki. Detayo idaphatikizanso zambiri monga dzina lolowera, adilesi, imelo, foni ndi ma adilesi a IP komwe ntchitoyo idafikirako, komanso mayina atsamba osalembetsedwa omwe amasungidwa mumanejala achinsinsi ndi ma logins obisika, mapasiwedi, data yama fomu ndi zolemba zomwe zasungidwa patsamba lino. .
Kuteteza malowedwe ndi mapasiwedi kumasamba, encryption ya AES idagwiritsidwa ntchito ndi kiyi ya 256-bit yopangidwa pogwiritsa ntchito ntchito ya PBKDF2 yotengera mawu achinsinsi omwe amadziwika ndi wogwiritsa ntchito okha, okhala ndi zilembo 12 zochepa. Kubisa ndi decryption wa logins ndi mapasiwedi mu LastPass ikuchitika kokha pa wosuta mbali, ndi mbuye achinsinsi kulosera amaona zosatheka pa hardware masiku, kupatsidwa kukula kwa mbuye achinsinsi ndi ntchito chiwerengero cha PBKDF2 iterations.
Kuti achite chiwembucho, adagwiritsa ntchito zomwe adazipeza ndi omwe adawawukira pankhondo yomaliza yomwe idachitika mu Ogasiti ndipo zidachitika chifukwa cha kusagwirizana kwa akaunti ya m'modzi mwa omwe adayambitsa ntchitoyi. Kuthyolako kwa Ogasiti kudapangitsa kuti owukirawo athe kupeza malo otukuka, nambala yofunsira, komanso chidziwitso chaukadaulo. Pambuyo pake zidapezeka kuti owukirawo adagwiritsa ntchito deta yochokera kumalo otukuka kuti aukire wopanga wina, chifukwa chake adakwanitsa kupeza makiyi osungira mitambo ndi makiyi kuti afotokozere deta kuchokera kuzinthu zomwe zasungidwa pamenepo. Ma seva osokonekera amtambo amakhala ndi zosunga zobwezeretsera zonse za data yantchito ya ogwira ntchito.
Source: opennet.ru