Lastpass HACK... don't use this for Steemit!
For those who think using LastPass is safe, along with any other password managers....
Password managers can be compromised. Google search "lastpass compromised" and read about the new zero-day hack discovered today. Tons of articles. I'm at work so I don't have time to write about this since my lunch is about to end. Here is an updated laspass blog post from today, time stamped at 1:15: https://blog.lastpass.com/2016/07/lastpass-security-updates.html/
Check out this article.
Apparently, this was a very minor issue (In the fact that it required a user to access a fake website), and it seems to have been only an issue with firefox users.
They have released an update for all firefox users to address the security concern.
Thanks for the lookout though!
Yes it is very minor. However with the financial incentive on Steemit, I see phishing and fake site page logins becoming common. There is always risk with these types of apps. Hopefully it won't cost anyone money on here. I personally don't use password apps. The convenience doesn't outweigh the minimal risk if you have a hefty account on here. Thanks for your reply and insight!
I think if you use a cloud based password manager, at the minimum you should protect it with 2FA. Then even if your creds are stolen, you won't get popped.
Yes, 2FA def adds a second layer of protection. I try to use that anyways on most things. The idea of storing passwords in a cloud is still risky. But if you do it, then def use that two-factor! :P