More than $35 million has been stolen from over 150 victims since December — ‘nearly every victim’ was a LastPass user::Security experts believe some of the LastPass password vaults stolen during a security breach last year have now been cracked open following a string of cryptocurrency heists

      • treadful@lemmy.zip
        link
        fedilink
        English
        arrow-up
        34
        ·
        1 year ago

        KeepassXC (desktop)/KeePassDX(mobile) on top of something like Syncthing or Nextcloud.

        • OberonSwanson@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          3
          ·
          1 year ago

          Thanks for the suggestion, I’ll try checking out both options. Unfortunately, I have an iPhone, so sadly there’s no KeepassDX. 🤔

          • treadful@lemmy.zip
            link
            fedilink
            English
            arrow-up
            3
            ·
            1 year ago

            I think there’s probably a Keepass compatible iPhone app out there but I haven’t vetted it. Worth looking for though.

      • hobbit@lemm.ee
        link
        fedilink
        English
        arrow-up
        27
        ·
        edit-2
        1 year ago

        Vaultwarden is what I use: https://github.com/dani-garcia/vaultwarden/

        Their wiki is pretty good assuming you’re comfortable with Docker.

        Back before I self-hosted, KeePassXC for desktop and Keepass2Android for mobile (along with Synching to sync the database) got the job done.

        • OberonSwanson@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          4
          ·
          1 year ago

          Interesting, I’ll check it out, as it looks like it’ll cover what I need. Hopefully it’s simple enough, as always having an iPhone makes things more complicated lol.

          • hobbit@lemm.ee
            link
            fedilink
            English
            arrow-up
            3
            ·
            1 year ago

            I host for my family which has a mix of Android and iPhone. So far, no complaints about Bitwarden on iOS. Hopefully it works out for you. If self hosting becomes a problem, I think premium is only $10/year and family is up to 6 people at $40/year.

      • Potatos_are_not_friends@lemmy.world
        link
        fedilink
        English
        arrow-up
        11
        ·
        1 year ago

        It doesn’t have to be difficult.

        1. Download keepass to your computer.

        2. Keep the save file on a USB or private cloud backup.

        3. Done!

        As you get more comfortable with it, you’ll start using it in more complex ways. Like having a phone app, connected to a self hosted network. But keep it simple for now.

      • whileloop@lemmy.world
        link
        fedilink
        English
        arrow-up
        6
        ·
        edit-2
        1 year ago

        If you wanna use KeePass, you just have to store your database in some secure location. It can be on your local drive or in the cloud, any location you trust really.

        • Nighed@sffa.community
          link
          fedilink
          English
          arrow-up
          3
          ·
          1 year ago

          You can set the encryption strength though, so I guess you could set it high and could even have it untrusted.

          Mine takes a while to open on my phone because of that

    • Ado@lemmy.world
      link
      fedilink
      English
      arrow-up
      6
      ·
      1 year ago

      Self-hosted with yubikey 2fa. Even Santa Claus can’t see my info 😎

        • Ado@lemmy.world
          link
          fedilink
          English
          arrow-up
          3
          ·
          1 year ago

          I started out with the Yubikey, which was such a relief all by itself. Even if you have my password, you need my physical USB key to plug in or NFC confirm for the 2fa. I did later move to self-hosting, but I def have a backup of a backup for that since space is cheap-ish.

        • olympicyes@lemmy.world
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          Not sure about that software specifically but most yubikey 2FA implementations allow you to set up more than one key. That way you don’t lose access if you lose your key. I personally have three keys.