Hackers break into centralized password manager OneLogin

Hackers break into centralized password manager OneLogin
In this Feb. 27, 2013, file photo, hands type on a computer keyboard in Los Angeles. Hackers have gained access to OneLogin, an online password manager that offers a single sign-on to multiple websites and services. The breach raises questions about the security of other accounts kept with OneLogin. According to published reports, OneLogin informed customers that the breach included the ability to access encrypted data; passwords are typically stored that way. OneLogin didn't immediately respond to a request for comment. (AP Photo/Damian Dovarganes, File)

Hackers have gained access to OneLogin, an online password manager that offers a single sign-on to multiple websites and services.

OneLogin said in a blog post that it couldn't rule out the possibility that hackers got keys to reading encrypted data, such as stored .

Published reports, however, say OneLogin informed customers that the hackers indeed got that capability. OneLogin didn't immediately respond to a request for comment.

Password managers help people keep track of passwords for a growing array of websites and services that require one. Instead of having to remember complex passwords for each one, people can just remember a master password. The password then unlocks other accounts as needed.

Some say that despite the risks of breaches with password managers, using one to keep track of multiple complex passwords is far better than repeatedly using the same ones at multiple sites.

In 2015, rival LastPass said hackers obtained some user information—although not actual passwords. It advised all users to change their LastPass master password.

While LastPass offers its services to both individuals and businesses, OneLogin focuses on corporate customers and lets employees of those companies access a range of services from Google, Microsoft, Amazon and others. OneLogin's customers include Pinterest and Conde Nast.


Explore further

Lessons from Yahoo hack: Simple tips to safeguard your email

© 2017 The Associated Press. All rights reserved.

Citation: Hackers break into centralized password manager OneLogin (2017, June 2) retrieved 22 February 2020 from https://phys.org/news/2017-06-hackers-centralized-password-onelogin.html
This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no part may be reproduced without the written permission. The content is provided for information purposes only.
527 shares

Feedback to editors

User comments