LastPass announced nothing more than that their recent statistics looked strange, and because of that they wanted to stay on the safe side just in case there was a breach—although that was unlikely—and the press responded exactly as it would if LastPass had been caught trying to cover up a definite leak.
(In the worst case scenario, a breach of LastPass’ data would reveal nothing more than master password hashes that are virtually uncrackable if the original password has just minimal complexity. Everything else, including information about individual websites and passwords, would be nothing more than an encrypted blob, the contents of which are inaccessible without the original password.)
You can argue if it’s wise to store your passwords online, but at least treat the few companies who act right right.
By acting the way they were supposed to, LastPass only hurt themselves — and that’s why we can’t have nice things.
via Throwing Fire – LastPass Disclosure Shows Why We Can’t Have Nice Things. Even the technology journalism sites can’t get things right on occasion.