A POPULAR web service that promises to help people keep their passwords secure has reported hackers may have obtained some user information - although not actual passwords - from its network.
SECURITY experts say it's just another indication that any online information is subject to attack.
LastPass, which makes a program that stores multiple passwords in encrypted form, says it has detected "suspicious activity" on its own computer system.
It says some users' email addresses, password reminders and encryption elements have been compromised.
The company says it has blocked the attack, and its investigation has found no evidence that individual passwords or user accounts have been breached.
It is advising users to change their LastPass master passwords, which are used to retrieve encrypted individual passwords for the users' other online services or accounts.
But it said they don't need to change individual passwords for all their accounts.
"We are confident that our encryption measures are sufficient to protect the vast majority of users," CEO Joe Siegrist said in a blog post, while apologising to users for the inconvenience of changing their passwords.
Like us on Facebook →