Hackers stole encrypted LastPass password vaults, and we’re just now hearing about it - The Verge
"If you have an account you use to store passwords and login information on LastPass, or you used to have one and hadn’t deleted it before this fall, your password vault may be in hackers’ hands. Still, the company claims you might be safe if you have a strong master password and its most recent default settings. However, if you have a weak master password or less security, the company says that “as an extra security measure, you should consider minimizing risk by changing passwords of websites you have stored.”A whole 2 hour discussion diving into this: twit.tv/shows/security-now