Hi there,
I have a query concerning the recent data breach where hackers now have all customer's encrypted passwords.
I understand that they cannot access them if they don't have the correct Master passwords.
What I'd like to know is if you also have used multifactor authentication (I use a Yubi key and grid) and they managed to crack your Master password, would they still be able to access your password data?
If someone could give me peace of mind on this point, it would be much appreciated.
Thanks!
Fin
Solved! Go to Solution.
I too would love to know the answer. I use Yubikeys as well for 2FA. Is my stolen vault protected only by my password? Or would my keys be required to open the vault?
Sadly my understanding from what I've read is that 2FA offers no protection to the backups - they are only encrypted using the Master Password on your LastPass account.