I don't understand why people prefer to store their passwords in the cloud. Even if they are encrypted on the wire, and encrypted on the disk. The moment a discovery is made that makes that encryption algorithm "broken", is the moment your passwords and logins are at risk to someone you don't control.<p>Passwords should be encrypted locally, and stored locally. If AES-256 is really just a Caesar cipher on drugs, and is broken tomorrow, I won't need to scramble getting my passwords reset. For those relying on LastPass however....