Jan 4, 2012

New Year's Resolutions with LastPass: #1 Run the LastPass Security Check

In the spirit of setting new goals and making positive changes as we start the new year, we're putting together a mini-series of posts on "New Year's Resolutions with LastPass". Our little tips and reminders will contain simple steps that help increase your online security in 2012, and ensure you get the most benefit out of the features LastPass has to offer to improve your digital life.

First up, let's take stock of the data stored in your LastPass account with the LastPass Security Check! Located in your LastPass Icon under the Tools menu, the LastPass Security Check analyzes the passwords stored in your LastPass account.

When you open and run the Security Check, you are given a score from 0 to 100 and ranked amongst LastPass users who have taken the test before, based on such factors as the strength and uniqueness of your passwords, the number of passwords stored in LastPass, and the use of multifactor authentication with your account.

You might be surprised by the results - most people underestimate the number of logins they have stored, and the number of old passwords still lurking there.

If you've run the Security Check before, you will see a graph charting the history of your performance over time - hopefully showing improvements as you've continued to use LastPass!

Take a minute today to run the Security Check and review your numbers. We won't get into the work right now of raising your score, but let's use it as an opportunity to see how your passwords are doing, and see where there are some areas for improvement. Do you have a lot of old logins with old, simple passwords? Are you still using the same passwords across multiple sites?

If you answered "yes", or just generally see room for improvement, our upcoming posts will help you up your score and get back on track!

Best,
The LastPass Team

28 comments:

  1. Thanks for the reminder. I could see how many ways I could improve the score!

    ReplyDelete
  2. Hmm, I wonder who is ranked number one? Ha.

    ReplyDelete
    Replies
    1. Hi Andy,
      that's me. I have 100% since a couple of weeks.
      No duplicate or weak passwords anymore...

      Delete
  3. Interesting. I have a number of duplicate passwords for sites, because they are actually the same site with different URLs. Is there a way to combine these entries in lastpass so it still works no matter which URL I've gone to.

    ReplyDelete
    Replies
    1. The "Equivalent Domains" feature should help in this scenario, our help article provides more detail: http://helpdesk.lastpass.com/account-settings/equivalent-domains/. If you have further questions certainly reach out to the support team at support[at]lastpass.com.

      Amber

      Delete
  4. Who has a score higher than 85%? Anyone here? :)

    ReplyDelete
  5. Excellent! Frankly, I am exhausted from the constant struggle to teach myself the critical aspects of all the software needed to run my gadgetry. Now LastPass extends a hand and offers to walk me through it, one small step at a time. Perfect!

    ReplyDelete
  6. 96.4% here. And "yes" to Ghworg, you can link domains in LastPass so you don't have to store multiple site entries.

    ReplyDelete
    Replies
    1. Nicely done - I think you've reached "LastPass Ninja" status.

      Amber

      Delete
  7. What should be done with websites (like Dell) that seem to prohibit the use of secure passwords? After generating a password with 23 characters, including special characters, I received this Fail notice:

    Invalid Password: Please enter a password that contains at least one letter and one number. It can contain only numbers (0-9), upper and lower case letters (A-Z, a-z), dollar signs ($), question marks (?), plus signs (+), periods (.), and commas (,).

    ReplyDelete
    Replies
    1. Unfortunately we just have to adjust accordingly, for the time-being. You can use the "show advanced options" to generate a new password that meets their specifications. Hopefully in the future services will permit a much higher standard of password security.

      Amber

      Delete
    2. Hah. Dell is generous. I have a brokerage account that requires that the password be between 8 and 12 characters in length, with only alphanumeric characters allowed, AND it silently collapses capital and small letters together without telling you.

      Delete
  8. My account wasn't properly setup. Password recovery failed. There's no phone number or chat line to get support. You guys suck!

    ReplyDelete
    Replies
    1. Please contact support[at]lastpass.com, our team would be happy to investigate any ongoing problems with your account.

      Amber

      Delete
  9. My password is N3verG7v3It@pp ... and now it is not strong anymore, as you all now it...

    ReplyDelete
    Replies
    1. im going to use this ....

      Delete
  10. This whole series was a great idea from the Lastpass folks! Serves two purposes:
    1. Teaches people about more features and more security measures et al.
    2. Serves as very good way of marketing!

    Kudos Lastpass team.
    -Sumit
    Happy user of LastPass for almost 18 months!

    ReplyDelete
  11. I just want to remark that I find Lastpass the best application for security... Thank all of you @lastpass for generously offering security to the world.

    My Respect!

    John
    The Netherlands

    ReplyDelete
  12. From above "Located in your LastPass Icon under the Tools menu". LastPass Icon? Where is this?

    ReplyDelete
    Replies
    1. The LastPass Icon is just the button that appears in your toolbar in your browser when you install the LastPass addon (https://lastpass.com/download.php) - if you see any ongoing problems with the addon please reach out to our support team: https://lastpass.com/supportticket.php?lpnorefresh=1

      Delete
  13. Wow, 50.2%!! I knew I had some old duplicate passwords and some weak ones, but this tool serves as a great reminder. Kind of like a slap in the face with a wet bar towel! I've go work to do!

    ReplyDelete
    Replies
    1. 40.9% with 200+ sites two weeks ago........94.4% today, with 173 sites. Amazing how up to date I was!

      Delete
    2. 40.9% with 200+ sites two weeks ago........94.4% today, with 173 sites. Amazing how up to date I was!

      Delete
  14. This is a great eye opener.
    This said the notations are not really correct as they assume that a password like hdsytdhsgdhsgdsthghgmlkdhgskjshqduy (all small caps) is not perfectly strong (it is)

    ReplyDelete
  15. how do i know LastPass isn't a hacker?
    Kaspersky is a Russian company. Should I trust them, or will they plant a trojan horse on my machine, for that matter should I trust LatPass?????

    ReplyDelete
  16. wait i am confused if i am at 33% is that good or bad ? do we want a higher score of lower

    ReplyDelete
    Replies
    1. You want a higher score.. I am at 96% from 11%.. the more secure and unique your passwrds are the higher percentage you will obtain.

      Delete
  17. After many hours of going to websites and changing my passwords to make them all unique and strong, I now have a Lastpass Security Challenge score of 99.3%, and ranked 1,260th!

    Unfortunately, several websites that I have accounts on don't allow for really strong passwords, so it's unlikely that I'll be able to score any higher on the challenge.

    ReplyDelete