this post was submitted on 25 Jun 2026

126 points (98.5% liked)

Technology

43134 readers

276 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:

This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 4 years ago

MODERATORS

remington@beehaw.org

alyaza@beehaw.org

TheRtRevKaiser@beehaw.org

gyrfalcon@beehaw.org

rs5th@beehaw.org

coldredlight@beehaw.org

SemioticStandard@beehaw.org

126

LastPass notifies users of yet another data breach (9to5mac.com)

submitted 1 day ago by along_the_road@beehaw.org to c/technology@beehaw.org

39 comments fedilink hide all child comments

top 39 comments

sorted by: hot top controversial new old

[–] irelephant@lemmy.dbzer0.com 9 points 9 hours ago

No way to prevent this says only password manager where this regularly happens.

[–] Noja@sopuli.xyz 6 points 15 hours ago (1 children)

KeePass2 on Desktops and Keepass2Android on Android.

[–] Kekzkrieger@feddit.org 3 points 8 hours ago

And sync the database via syncthing, have a keyfile on each of your devices ans password protect it all

[–] remington@beehaw.org 27 points 1 day ago (4 children)

Bitwarden

[–] 4am@lemmy.zip 23 points 1 day ago (1 children)

I’ve been a faithful BitWarden subscriber since almost he beginning, but read up on them. They’ve Been making some moves lately that point in a bad direction. Proceed with caution.

[–] DoucheBagMcSwag@lemmy.dbzer0.com 2 points 16 hours ago (1 children)

Any alternatives? Might jump ship before they fully enshitify and hope their users are too entrenched too leave

[–] irelephant@lemmy.dbzer0.com 1 points 9 hours ago (1 children)

Use a vaultwarden instance. It's bitwarden api compatible.

[–] DoucheBagMcSwag@lemmy.dbzer0.com 1 points 9 hours ago (1 children)

I think I may be too dumb for that....instance?..

[–] irelephant@lemmy.dbzer0.com 1 points 7 hours ago

https://vault.tchncs.de/ https://github.com/dani-garcia/vaultwarden

You can use the bitwarden app/extension with this. It's basically a custom backend for bitwarden.

[–] dan@upvote.au 14 points 1 day ago* (last edited 1 day ago)

Bitwarden's the only "cloud-based" password manager I trust, since their entire stack is open-source.

For self-hosting, they recently released Bitwarden Lite, which is a lot simpler to host than their regular server. One Docker image and you can use SQLite for the database. Different design decisions compared to the regular server which is designed to scale up to handle businesses with tens or hundreds of thousands of employees.

There's also Vaultwarden, which is an unofficial third-party server implementation.

[–] Redjard@reddthat.com 14 points 1 day ago (1 children)

Bitwarden seems to be pretty clearly on the path of enshittification. They've been going towards closing off the self-hosted versions for a while, and moving their app out of repos that check licenses, with the likely aim of taking it closed source.
The usualy will surely follow.

Not sure how soon, but I definitely wouldn't newly go to them at this point.

[–] Quill7513@slrpnk.net 2 points 16 hours ago (1 children)

VaultWarden will probably become what people who care about these things turn to for a cloud-based easy sync solution

[–] Redjard@reddthat.com 1 points 16 hours ago (1 children)

What's the point over keepass with syncthing?

[–] Quill7513@slrpnk.net 3 points 15 hours ago (1 children)

that would be a non-cloudbased non-easy solution. personally, that's what i'm doing, but i don't anticipate most computer users wanting to go through the effort when so many people are still running windows 10 rather than switching to linux

[–] captain_oni@lemmy.blahaj.zone 1 points 14 hours ago

Funny thing I switched from bitwarden to keepassxc + synchthing just yesterday.

And my best friend got interested in doing that as well (mostly syncthing, so she can backup her photos and stop relying on the apple ecosystem). I also convinced her to switch to Linux a while ago.

There's a lot of regular non-techy users that yearn for things like that. They just need some support.

[–] grillgamesh@lemmy.dbzer0.com 6 points 1 day ago (1 children)

and ProtonPass. they're both great.

[–] dan@upvote.au 10 points 1 day ago (1 children)

Proton's server is closed source so I don't trust it as much as Bitwarden.

[–] grillgamesh@lemmy.dbzer0.com 2 points 19 hours ago

understandable.

proton pass comes with a subscription to the drive, email, and everything else, so its very easy to use.

[–] Stanley_Pain@lemmy.dbzer0.com 17 points 1 day ago (1 children)

Dumped them when they completely mismanaged their first breach.

[–] Quill7513@slrpnk.net 2 points 16 hours ago

which was either 7 or 4 years ago now (can't remember)

[–] crandlecan@mander.xyz 4 points 1 day ago* (last edited 1 day ago) (1 children)

😂 anyone still there deserves what they got

Edit: oh, okay it's not as bad as last time...

The information accessed was limited to standard business contact information and related customer relationship management (CRM) data, including customer names, phone numbers, email addresses, and physical addresses, as well as support case data and sales-related data.

[–] Sibbo@sopuli.xyz 3 points 22 hours ago

Sales-related data

So credit card numbers?

[+] jay2@beehaw.org -20 points 1 day ago (3 children)

Use your brain. Literally. It's the only safe way to store passwords.

[–] TehPers@beehaw.org 13 points 19 hours ago (1 children)

I have over 300 different passwords for different accounts. I'm not remembering that many passwords.

[–] jay2@beehaw.org 1 points 9 hours ago

Well, good luck when it's your turn in the barrel.

[–] Fifrok@discuss.tchncs.de 5 points 19 hours ago (2 children)

I probably have around 100 accounts that I'd need to remember the passwords to, that's not possible while keeping them actually decent and unique.

[–] jay2@beehaw.org -1 points 9 hours ago (1 children)

It is possible. I have 78 unique passphrases. You only need to train your brain and not turn it over to a machine.

[–] Fifrok@discuss.tchncs.de 4 points 8 hours ago (1 children)

Sure if it's possible for you then it must be possible for everyone 😐. I'm sure that this will work for my ass. It's not like I know from experience that I will forget anything of importance if I don't write it down.

I keep a journal and a commonplace book (and a self hosted password manager) to remember anything of importance for no reason at all, silly me should have just remembered it. I just need to pull myself up by my bootstraps and stop being lazy duh.

[–] jay2@beehaw.org 0 points 8 hours ago

You can do it. That's my point. Yes it takes time. Yes it takes patience. Yes it takes practice. Your brain is an incredible machine capable of so many things, much more by far than a computer. Computers are chunks of silicon. They do basic addition. They just do it so much quicker is all. Yours is superior. Keep it exercised.

I do keep a cheat sheet of clues. Things that I write to remind me of the actual phrase, but I rarely need it. Make a point to memorize 10 a week. Custom photo screensavers (I use jpeg Saver 5.3 by Goat 1000) are great for flash cards. I find writing it out to be the best way to learn, but reading is my second, and listening is third (but rather poor considering I lose focus and miss bits). Try to learn how you learn best and exploit that. I used to have an old braintest that was incredibly accurate. It would tell you whether you were more inclined for audio or visual learning. It also defined your brains inclination to be left hemispheric or right hemispheric in its dominance. It was called brainworks. I think it ran on windows 95. For sure Windows 98SE.

Honestly, a lot of the ones I ended up needing to lookup or reset were the ones that are restricted with a maximum length and I cant use an entire phrase. That just jambs up my plumbing, if you know what I mean.

[–] icelimit@lemmy.ml -1 points 19 hours ago (2 children)

Flashcards. Write down your credentials and memorize them. Throw them away willy nilly when you're done.

[–] passenger@sopuli.xyz 8 points 18 hours ago (1 children)

Hey, don't use a password manager like KeePass, because brain is the only safe place to store passwords. In order to do that, WRITE THEM ON FLASH CARDS to memorize them and then THROW THEM AWAY

Tell me it was a joke

[–] jay2@beehaw.org 1 points 8 hours ago (1 children)

Flashcards are your brains friend. They are no joke.

[–] passenger@sopuli.xyz 1 points 3 hours ago* (last edited 3 hours ago)

Writing down your password is breaking the very first rule ever made about passwords. A cliche. Only appears in fiction

[–] Fifrok@discuss.tchncs.de 3 points 16 hours ago* (last edited 16 hours ago) (2 children)

That would work, if I had like ten or twenty of them to remember.

No amount of studying is gonna make me remember almost a hundred strings of 24 random characters, and what string goes to what account

[–] jay2@beehaw.org 1 points 8 hours ago

Don't use random characters. Use absurd phrases that mean something to you.

[–] icelimit@lemmy.ml 3 points 15 hours ago (1 children)

It was supposed to be joke 😔

[–] Fifrok@discuss.tchncs.de 2 points 15 hours ago

Damn, I see that now. The heat wave is making me stupid, my brain isn't made for 35C

[–] 4am@lemmy.zip 16 points 1 day ago (1 children)

Not very safe passwords.

[–] jay2@beehaw.org -2 points 20 hours ago

Oh really? What is it? Please tell.