- Posts: 1071
- GoldenHas donated $ to the upkeep of GPL
What happens when someone finds out that one password used for EVERYTHING?
There’s a reason you use a multi-word 20+ character long phrase, combined with Multi-Factor Authentication. Not only would they need to find out some cryptic phrase that only you would know, they also have 30 seconds to guess the right 6 digit, constantly changing, random string of numbers.
Isn’t it possible someone could hack LastPass (or whoever) and gain access to all the passwords?
No. What really happens here (at a high level) is that the password you set is actually an encryption key. When you set a password, that password is encrypted using that “master password” you set and that’s what’s stored at LastPass.