![]() If the password isn't automatically filled in, then it's probably a phish (since LastPass will refuse to populate a site that doesn't match) Combined with some other things, we're in a much strong posture BECAUSE of lastpass (or any other reasonable password manager) ![]() With LastPass, once you've saved your password there one time, we are training people to never type it again. People clicking on a link in an email, going to that website, thinking it was one of ours, and typing in their credentials. The biggest problem we used to have was Phishing. (the other 10% develop our public service presence, so they have to worry about protecting servers that are always under direct concerted attack) We also manage our devices with reasonable policies, and have software on them to protect against malware (not 100% perfect of course, but it's all managing risk).Įven in this environment, the risk of password reuse is MUCH MUCH MUCH higher than any other risk 90% of our employees would incur. I happen to work in one, with dozens of thousands of employee arranged globally, most all working from home. Now you've expanded this into a corporate environment. Why would employees clicking on a link on their computer put your LastPass vault at risk?
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |