Why Should I Use LastPass?

According to Verizon’s 2017 Data Breach Investigation report, 81% of data breaches are caused by poor credential management. A password manager is the next step after DUO MFA in securing UCLA’s credentials and improving UCLA’s overall credential management. Account breaches can happen when using weak passwords or reusing old passwords/sharing passwords across accounts.

LastPass simplifies your online life by remembering your passwords for you and alleviating these poor habits. With LastPass to manage your logins, it's easy to have a strong, unique password for every online account and improve your online security.

A password manager is a software application that stores, retrieves, and manages complex passwords, storing them in an encrypted format. Password managers store login information and automatically enters them to log you into your online accounts.

A password manager makes your internet experience easier and safer. With a password manager to manage your logins, it's easy to have a strong, unique password for every online account and improve your online security. It stores login information of various accounts and automatically enters them into web forms to save you time. This helps prevent:

  1. The need to remember multiple passwords.
  2. Poor password behavior such as low complexity or one repeated password for multiple sites.
  3. Attacks like keystroke logging.
  • One master password is all you need to remember to access all of your accounts! It’s like a UCLA single sign on for the entire internet.
  • You can bring your passwords with you to any platform: web, desktop, and mobile. The passwords on one platform sync in real time on every other platform. This means, for example, if you change a password for a webpage on your web browser, it will automatically update the password on your tablet and mobile LastPass account.
  • LastPass is secure:
    • The latest algorithms (AES-256, PBKDF2 SHA-256, and salted hashes) are used to encrypt passwords. LastPass never sees your passwords in plaintext and your master password never leaves your machine.
    • Your passwords are encrypted and decrypted at the device level. Your master password, and the keys used to encrypt and decrypt data, are never sent to LastPass’ servers, and are never accessible by LastPass or the IT Security Office. This means even if your LastPass data is intercepted or compromised, your passwords are still safe. LastPass employs a 'zero-knowledge' model: all sensitive data is encrypted locally at your device with a key that is never transmitted to the host (LastPass). As such, even under government subpoena, LastPass could ever only turn over an encrypted blob with no key. This serves to protect your data from internal and external threats alike. This is why it is not guaranteed that your account will be recoverable if your Master Password is lost.
    • Additionally, adding DUO MFA provides an extra layer of security for your LastPass account.
  • LastPass offers fingerprint support. Swipe into the LastPass app with your fingerprint for easy, secure access to your passwords.
  • LastPass helps you make better passwords with their Password Generator. The generator can be adjusted for length, types of characters, readability, pronounceability, and other options. You can learn more and even test the LastPass generator.
  • Amazing customer service. Call and promptly speak with a live technical support representative, who is happy to assist you. By phone, contact LastPass Support at 1-800-830-6680 (Monday - Friday, 8am to 6pm MST), or open a support ticket.