Recently, LastPass reported that an attacker was “able to copy a backup of customer vault data from the encrypted storage”. For LastPass users, this means that an attacker could have a copy of “unencrypted data, such as website URLs, as well as fully-encrypted sensitive fields such as website usernames and passwords, secure notes, and form-filled data.” Because sensitive data is encrypted, this attacker may not be able to access it, at least not immediately, but given they have all the time in the world to try, it’s possible they’ll eventually crack the encryption and gain access to the passwords contained within.

This is just a short note to say that Facebook has deactivated both my Facebook and Messenger accounts, and I can’t seem to get back into them and won’t be creating a new one (see my post about leaving Facebook). If you want to stay in contact with me, please chase me down on another platform. I’ve got a bunch of contact methods listed in the header of this website, but I’ll list them here too:

After several years hosting my blog on Wordpress.com, I decided that I didn’t want to pay the A$120/year renewal fee just for the privilege of hosting blog at my own domain name (which I already own), especially since I’ve already started paying for US$5/month for a Digital Ocean droplet to host a couple of other things. So my blog has moved from WordPress to Hugo. It’s not currently super pretty because I didn’t spend much time on the themeing, but it is functional, and all my content is still here, and I don’t think I’ve broken any old links or made any significant URL changes.