LastPass begins implementing 12-character grasp password for all customers

LastPass has started enforcing a 12-character minimal grasp password. The corporate can also be finishing up extra measures to bolster its safety in opposition to rising threats. Beforehand, customers might select a weaker password regardless of the advice for an extended one. The brand new coverage will hopefully put an finish to the security breach woes that the password supervisor software suffered in 2022. To make issues worse, Cybersecurity experts claimed that the safety lapses led to a wave of crypto thefts.

LastPass now requires necessary 12-character grasp password

LastPass in a blog post revealed that since April 2023, all new customers and current customers who took steps to reset their grasp password have been required to comply with the 12-character restrict. Nonetheless, this transformation didn’t have an effect on legacy prospects who continued utilizing a shorter and weaker grasp password. For the uninitiated, the grasp password is the one which secures the LastPass account. All saved credentials seemingly get uncovered if the account will get hacked. Nonetheless, the corporate claimed that so long as prospects adopted ‘finest practices’ irrespective of the password strength, their information would stay safe.

Now, all grasp passwords on LastPass should be 12 characters or extra which is able to stay the default setting. The grasp password should embody uppercase, lowercase, numeric, and particular characters, as is mostly required for passwords these days.

New grasp password requirement is now rolling out

LastPass says that the brand new grasp password coverage is rolling out in a phased method. Free, Premium, and Household accounts are being notified first through electronic mail beginning January 8. Enterprise and Groups prospects should comply in direction of the top of January 2024. Customers with a 12-character login don’t have to make any adjustments and are good to go. All people else should create an extended grasp password. Consumer accounts that don’t adjust to the brand new coverage might be logged out and requested to set a brand new password.

LastPass may even cross-check passwords on Darkish Net

Along with the up to date longer password, beginning subsequent month, LastPass will start checking new or reset grasp passwords in opposition to a database of identified breached credentials on the darkish internet. If the chosen credential has already been uncovered, the password supervisor will situation a safety warning pop-up alerting the consumer to pick out one other code.