The document discusses the Heartbleed vulnerability and explains how password management tools like LastPass can help improve online security. It describes what the Heartbleed bug is, how it allows theft of sensitive information, and why unique, strong passwords are important to prevent attacks. The bulk of the document demonstrates how to set up a LastPass account and vault, generate secure passwords, organize accounts into folders, and access passwords across devices for a more secure digital life.
I forgot my password – what a secure password reset needs to have and whyMichal Špaček
Users often forget their passwords, so applications often must have a password reset mechanism. There are several options for how to do it; some of them are good, most of them not so good. Generate a password and send it in an email? No. Security questions? No way. Reset passwords via a phone call? Rather not. This talk presents some really creative examples of botched password reset implementations, as well as a proven method for resetting passwords securely.
Would you voluntarily share how your web app stores passwords? Some companies indeed do share, for example Facebook and LastPass to name just a few. Some share involuntarily. Some don't share at all because they feel that it will make them more vulnerable. Here's why you should do that and how.
West Chester Staff Technology Training - Website,LastPass and Tips!William Mann
Technology Training Session 14 for the Borough of West Chester staff. Topics include getting around our new website, password management with LastPass, Word Tips and backups.
Network security is very important for everyone, no matter what you are using. Hackers are out there and it is very important to have the necessary security to keep your data and personal life safe.
I forgot my password – what a secure password reset needs to have and whyMichal Špaček
Users often forget their passwords, so applications often must have a password reset mechanism. There are several options for how to do it; some of them are good, most of them not so good. Generate a password and send it in an email? No. Security questions? No way. Reset passwords via a phone call? Rather not. This talk presents some really creative examples of botched password reset implementations, as well as a proven method for resetting passwords securely.
Would you voluntarily share how your web app stores passwords? Some companies indeed do share, for example Facebook and LastPass to name just a few. Some share involuntarily. Some don't share at all because they feel that it will make them more vulnerable. Here's why you should do that and how.
West Chester Staff Technology Training - Website,LastPass and Tips!William Mann
Technology Training Session 14 for the Borough of West Chester staff. Topics include getting around our new website, password management with LastPass, Word Tips and backups.
Network security is very important for everyone, no matter what you are using. Hackers are out there and it is very important to have the necessary security to keep your data and personal life safe.
Why is password protection a fallacy a point of viewYury Chemerkin
MAKE your password strong, with a unique jumble of letters, numbers and punctuation marks. But memorize it – never write it down. And, oh yes, change it every few months. These instructions are supposed to protect us. But they don’t.
http://hakin9.org/hakin9-extra-12011-exploiting-software/
How to choose a password that’s hard to crackKlaus Drosch
A good password is usually the first and only line of defense for your important web-services. Choosing a strong and memorable password can be a hassle since those two criteria don’t always go hand in hand. It’s tempting to reuse an old password, slightly modifying it, or even write it down on a text-file in the computer.
In this guide, we will show you how to choose a good password, how to remember it and just how easily bad passwords can get hacked.
In cryptanalysis and computer security, password cracking is the process of recovering passwords from data that have been stored in or transmitted by a computer system.
You would not let someone into your bag or car so why let them into your site? Beware of the it will never happen to me attitude and take the steps in this presentation to keeping your patch of the internet safe.
A number of tools and plugins are already available for the wordpress security audit for your site.
For more visit:https://acodez.in/wordpress-security-audit/
Free ebook! Discussions around cybersecurity can be complex, but everyone must know that you should stay safe online, regardless of your technical expertise. This ebook gives you some essential tips for keeping yourself and your data secure on the internet.
ebook download link: https://zcu.io/nsTr
What else does it cover?
If you have been considering what steps you can take to protect yourself from threats, you’ll get great insights about what types of common risks exist and how you can prepare for them.
- Security Measures for General Public
- Security Measures for Remote Employees
- Common Cybersecurity Risks For Business By Employees
- Cybersecurity Career Opportunities for Tech Enthusiasts
Stay Safe in the Cyberspace!
#freeebook #ebook #cybersecurity #cybersecurityawareness #security #cybersecurity #cloudsecurity #infosec #privacy #datasecurity #cyberattack #databreach #dataprotection #digital #security #phishing #informationsecurityawareness #informationsecurity
Personal Internet Security System or "PISS" doesn't exist. It's a mindset that comes from knowledge. Stop looking for someone else's and handle your own. You have an Antivirus? Firewall? Great! But the real threat comes from YOU! The user. That takes knowledge. I attached briefing slides for the typical user with minimal IT knowledge. Sometimes we all need a reminder that we are the ones who is the greatest threat to our networks. It's not a country states or actor. But we are the ones who inadvertently let them walk in.
Why is password protection a fallacy a point of viewYury Chemerkin
MAKE your password strong, with a unique jumble of letters, numbers and punctuation marks. But memorize it – never write it down. And, oh yes, change it every few months. These instructions are supposed to protect us. But they don’t.
http://hakin9.org/hakin9-extra-12011-exploiting-software/
How to choose a password that’s hard to crackKlaus Drosch
A good password is usually the first and only line of defense for your important web-services. Choosing a strong and memorable password can be a hassle since those two criteria don’t always go hand in hand. It’s tempting to reuse an old password, slightly modifying it, or even write it down on a text-file in the computer.
In this guide, we will show you how to choose a good password, how to remember it and just how easily bad passwords can get hacked.
In cryptanalysis and computer security, password cracking is the process of recovering passwords from data that have been stored in or transmitted by a computer system.
You would not let someone into your bag or car so why let them into your site? Beware of the it will never happen to me attitude and take the steps in this presentation to keeping your patch of the internet safe.
A number of tools and plugins are already available for the wordpress security audit for your site.
For more visit:https://acodez.in/wordpress-security-audit/
Free ebook! Discussions around cybersecurity can be complex, but everyone must know that you should stay safe online, regardless of your technical expertise. This ebook gives you some essential tips for keeping yourself and your data secure on the internet.
ebook download link: https://zcu.io/nsTr
What else does it cover?
If you have been considering what steps you can take to protect yourself from threats, you’ll get great insights about what types of common risks exist and how you can prepare for them.
- Security Measures for General Public
- Security Measures for Remote Employees
- Common Cybersecurity Risks For Business By Employees
- Cybersecurity Career Opportunities for Tech Enthusiasts
Stay Safe in the Cyberspace!
#freeebook #ebook #cybersecurity #cybersecurityawareness #security #cybersecurity #cloudsecurity #infosec #privacy #datasecurity #cyberattack #databreach #dataprotection #digital #security #phishing #informationsecurityawareness #informationsecurity
Personal Internet Security System or "PISS" doesn't exist. It's a mindset that comes from knowledge. Stop looking for someone else's and handle your own. You have an Antivirus? Firewall? Great! But the real threat comes from YOU! The user. That takes knowledge. I attached briefing slides for the typical user with minimal IT knowledge. Sometimes we all need a reminder that we are the ones who is the greatest threat to our networks. It's not a country states or actor. But we are the ones who inadvertently let them walk in.
West Chester - Tech Training Session 11William Mann
Quarterly the Borough of West Chester staff gets together for technology training. The training is focused on both the professional and personal side of technology. This is the Fall 2013 training presentation.
West Chester Connect is a social media app that allows our residents to create "incidents" that require service from their local government. This is the presentation that was used on August 28, 2013 in a public training forum.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
Elevating Tactical DDD Patterns Through Object CalisthenicsDorra BARTAGUIZ
After immersing yourself in the blue book and its red counterpart, attending DDD-focused conferences, and applying tactical patterns, you're left with a crucial question: How do I ensure my design is effective? Tactical patterns within Domain-Driven Design (DDD) serve as guiding principles for creating clear and manageable domain models. However, achieving success with these patterns requires additional guidance. Interestingly, we've observed that a set of constraints initially designed for training purposes remarkably aligns with effective pattern implementation, offering a more ‘mechanical’ approach. Let's explore together how Object Calisthenics can elevate the design of your tactical DDD patterns, offering concrete help for those venturing into DDD for the first time!
Welocme to ViralQR, your best QR code generator.ViralQR
Welcome to ViralQR, your best QR code generator available on the market!
At ViralQR, we design static and dynamic QR codes. Our mission is to make business operations easier and customer engagement more powerful through the use of QR technology. Be it a small-scale business or a huge enterprise, our easy-to-use platform provides multiple choices that can be tailored according to your company's branding and marketing strategies.
Our Vision
We are here to make the process of creating QR codes easy and smooth, thus enhancing customer interaction and making business more fluid. We very strongly believe in the ability of QR codes to change the world for businesses in their interaction with customers and are set on making that technology accessible and usable far and wide.
Our Achievements
Ever since its inception, we have successfully served many clients by offering QR codes in their marketing, service delivery, and collection of feedback across various industries. Our platform has been recognized for its ease of use and amazing features, which helped a business to make QR codes.
Our Services
At ViralQR, here is a comprehensive suite of services that caters to your very needs:
Static QR Codes: Create free static QR codes. These QR codes are able to store significant information such as URLs, vCards, plain text, emails and SMS, Wi-Fi credentials, and Bitcoin addresses.
Dynamic QR codes: These also have all the advanced features but are subscription-based. They can directly link to PDF files, images, micro-landing pages, social accounts, review forms, business pages, and applications. In addition, they can be branded with CTAs, frames, patterns, colors, and logos to enhance your branding.
Pricing and Packages
Additionally, there is a 14-day free offer to ViralQR, which is an exceptional opportunity for new users to take a feel of this platform. One can easily subscribe from there and experience the full dynamic of using QR codes. The subscription plans are not only meant for business; they are priced very flexibly so that literally every business could afford to benefit from our service.
Why choose us?
ViralQR will provide services for marketing, advertising, catering, retail, and the like. The QR codes can be posted on fliers, packaging, merchandise, and banners, as well as to substitute for cash and cards in a restaurant or coffee shop. With QR codes integrated into your business, improve customer engagement and streamline operations.
Comprehensive Analytics
Subscribers of ViralQR receive detailed analytics and tracking tools in light of having a view of the core values of QR code performance. Our analytics dashboard shows aggregate views and unique views, as well as detailed information about each impression, including time, device, browser, and estimated location by city and country.
So, thank you for choosing ViralQR; we have an offer of nothing but the best in terms of QR code services to meet business diversity!
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
A tale of scale & speed: How the US Navy is enabling software delivery from l...sonjaschweigert1
Rapid and secure feature delivery is a goal across every application team and every branch of the DoD. The Navy’s DevSecOps platform, Party Barge, has achieved:
- Reduction in onboarding time from 5 weeks to 1 day
- Improved developer experience and productivity through actionable findings and reduction of false positives
- Maintenance of superior security standards and inherent policy enforcement with Authorization to Operate (ATO)
Development teams can ship efficiently and ensure applications are cyber ready for Navy Authorizing Officials (AOs). In this webinar, Sigma Defense and Anchore will give attendees a look behind the scenes and demo secure pipeline automation and security artifacts that speed up application ATO and time to production.
We will cover:
- How to remove silos in DevSecOps
- How to build efficient development pipeline roles and component templates
- How to deliver security artifacts that matter for ATO’s (SBOMs, vulnerability reports, and policy evidence)
- How to streamline operations with automated policy checks on container images
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
SAP Sapphire 2024 - ASUG301 building better apps with SAP Fiori.pdfPeter Spielvogel
Building better applications for business users with SAP Fiori.
• What is SAP Fiori and why it matters to you
• How a better user experience drives measurable business benefits
• How to get started with SAP Fiori today
• How SAP Fiori elements accelerates application development
• How SAP Build Code includes SAP Fiori tools and other generative artificial intelligence capabilities
• How SAP Fiori paves the way for using AI in SAP apps
Generative AI Deep Dive: Advancing from Proof of Concept to ProductionAggregage
Join Maher Hanafi, VP of Engineering at Betterworks, in this new session where he'll share a practical framework to transform Gen AI prototypes into impactful products! He'll delve into the complexities of data collection and management, model selection and optimization, and ensuring security, scalability, and responsible use.
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
1. Technology Training
Special Training - Session #13
Heartbleed Explained
Getting Your Digital Security in Order with LastPass
May 8, 2014
William Mann, Borough of West Chester - CIO
3. What is Heartbleed?
The Heartbleed Bug is a serious vulnerability in the popular OpenSSL
cryptographic software library. This weakness allows stealing the information
protected, under normal conditions, by the SSL/TLS encryption used to secure the
Internet.
SSL/TLS provides communication security and privacy over the Internet for
applications such as web, email, instant messaging (IM) and some virtual private
networks (VPNs).
SSL = Secure Sockets Layer
TLS = Transport Layer Security
definitions
4. What is Heartbleed?
The Heartbleed bug allows anyone on the Internet to read the memory of the
systems protected by the vulnerable versions of the OpenSSL software. This
compromises the secret keys used to identify the service providers and to encrypt
the traffic, the names and passwords of the users and the actual content.
This allows attackers to eavesdrop on communications, steal data directly
from the services and users and to impersonate services and users.
5. What is Heartbleed?
With a Heartbleed
infected
server, information
like you see here can
be captured by an
attacker. This may
not look like
much, but if your
logon or account
information is
exposed in this way
are data is at risk.
6. What is Heartbleed?
Why it is called the Heartbleed Bug?
The Bug is in the OpenSSL's implementation of the TLS/DTLS (transport layer
security protocols) heartbeat extension (RFC6520).
When it is exploited it leads to the leak of memory contents from the server
to the client and from the client to the server.
7. Explaining Heartbleed
First the girl asks the server to indicate whether it’s still
online by telling it to say “Potato,” and indicates the length
of the word. The server responds with “Potato,” while
withholding all of the information surrounding “Potato,”
written out in a lighter hue in the server’s speech bubbles.
The hacker then asks the server to repeat the same task, but
instead replaces “Potato” with “Bird,” and indicates the
length of the word. The server complies.
Then, the hacker asks the server to say “Hat,” but instead of
noting that it’s a three-character word, she states that it’s
500 letters long. The server responds not only by saying
“Hat,” but also by leaking out the information around the
word. By doing so, it reveals sensitive server
information, including a “master key,” which the hacker
begins to jot down.
8. Protecting Your Information
Heartbleed is a reminder that securing your information is more important then ever
before.
And it’s going to get worse.
As we continue relying on technology for conducting business, communicating through
email, social media and shopping online cybercriminals are going to continue getting
smarter and more aggressive in how they try to steal personal information.
So we need to be even smarter….
9. Password Management
Password Management is becoming one of the best defenses for security flaws. Passwords
today need to be taken very seriously. This means having a good, efficient password
management plan for every account you have online.
Password Management in days past could be very complicated, time consuming and difficult.
However today there are many solutions out there that are easy to use, secure and either
free or very inexpensive.
Each of your accounts should have a strong
and unique password.
10. Password Management with LastPass
Last Pass has both a free account and a paid account.
The paid account is $12 / year and provided mobile app support which is alone is well worth
the cost.
With this password management tool you will be able to organize, manage and use unique
secure passwords easily.
In fact I use LastPass and I actually do not even know what the majority passwords are.
Now – that’s security!
11. Introducing LastPass
What I really like about LastPass is that you actually do not need to know all those
passwords and their app is available on every device you may choose to use.
You just need to know one password…. Your LastPass password.
12. Introducing LastPass
With this in mind, even before you sign up for LastPass be sure to think about a
good, secure password that you will never – ever forget.
13. Simple Passwords are so Yesterday
Passwords as we know them are going to
change in a big way very soon. Gone will be the
time when simple words like… “password” will
be used or accepted.
Now I may be getting ahead of myself but…
A better password strategy is using key phrases
that only you would know and no one else
could guess or that a cyber criminal could hack.
14. Passwords are Changing
Here are a couple of examples of using
“phrases” for your password.
Ex: 1 is “Captain Kirk and Mr. Spock are best friends!”
Your typed password would be:
Captain_Kirk_&_Mr._Spock_are_best_freinds!
Ex: 2 is “My favorite Place on Earth is Disney World!”
Your typed password would be:
My_Favorite_Place_on_Earth_is_Disney_World!
Passwords using phrases can be long, complex and easily remembered!
15. Embrace Password Management
This is important before we continue. Make sure you pick a
good password or phrase that you will not forget. It will also
be a good idea to print and save this password is a secure
location like a safe in your home or another secure location.
This will be the only password you will need if you use LastPass
(or similar password managers) regularly.
If you forget your LastPass password there is NO reset
mechanism.
16. Signing up with LastPass
Go to www.lastpass.com to sign up. Either choose “Download Free” or “Go Premium”.
Passwords are very important and your security is probably worth $12 / year.
17. Creating Your LastPass Account
I recommend that when you sign up
with LastPass you use your primary
computer or laptop. When you go to
create an account you will be
prompted to “Download LastPass”.
Do this.
You will then enter your email
address, a master password (the really
– really good one you already decided
on) and a Password Reminder that will
only help you remember it – just in
case.
18. Getting to Know Your LastPass Vault
The LastPass Vault is where you will
store, organize and manage all of your
passwords.
This vault will be also available to you
on all of your mobile devices if you sign
up for the Premium account
($12/year).
19. Organizing Your LastPass Vault
I recommend organzing all of your
accounts into folders.
You can see by my example I have all of
my accounts in catergorized folders
that I created.
Within each folder are my specific
accounts.
20. Organizing Your LastPass Vault
By creating an organized folder structure for your
accounts you quickly realize....
21. Creating Strong Passwords with LastPass
With LastPass installed you will now
notice an (*) next to all of you logon
fields for websites. If an account has
already been setup you can simply
select login because all of the fields
will be completed for you. You can also
setup an account for “autologin” which
will of course automatically log you in.
I recommend this only a secured PC
that is passworded to access you
Windows account or one that only you
have access to.
Make sure that when you install LastPass on your
PC that you install the “plug in” for all of the
browsers that you use.
22. Creating Strong Passwords with LastPass
Creating secure & unique passwords for
each account is the point here so you
will want to take the time to change
any passwords you have.
LastPass makes this very easy with the
“password generator”.
You can do this by selecting the * and
the “Generate” button.
23. Creating Strong Passwords with LastPass
If you use the default settings you will
see it will generate for you a strong 12
character password using several types
of characters.
Select Use Password then “Yes, Use for
this Site”.
24. Going Mobile with LastPass
On your mobile device you will open
the LastPass app first, copy the
password and then paste it into
account the that you want to access.
Although there is a physical – additional
step here – you only need one password
to remember – and use.
However, and this is important, all of
your passwords are complex and
unique.
25. How Does LastPass Work?
LastPass uses AES 256-bit encryption. The Advanced Encryption Standard (AES) is a
specification for the encryption of electronic data established by the U.S.National
Institute of Standards and Technology (NIST) in 2001
All sensitive data is encrypted and decrypted locally before syncing with
LastPass. Your key never leaves your device, and is never shared with LastPass.
Your data stays accessible only to you.
MQ9=5khD<YWZ&+5
This is how each of your passwords should look.
With LastPass you can actually do this – and it’s easy.
26. LastPass Demo
Now we will walk through how to use LastPass. Please ask questions as we go along.
www.lastpass.com