LastPass Compromised, Data Stolen
LastPass, a password management firm was hacked two weeks ago, allowing hackers to steal the company's and proprietary technical data.
The incident surfaced after Bleeping Computer came to know about the breach from insiders and contacted the company last week. According to experts, the employees faced difficulties to contain the breach after LastPass was compromised.
LastPass issued a security advisory accepting the company was compromised through a breached developer account that attackers use to gain access to the company's developer environment.
Company launches investigation
According to LastPass, there is no evidence that encrypted password vaults or customer data were compromised, but the attackers did steal "proprietary LastPass technical data" and chunks of their source code.
Responding to the incident, the company has deployed containment and mitigation measures and hired a leading cybersecurity agency to look into the issue.
The investigation is in process, LastPass said the containment state has been achieved, it has applied advanced security measures, and hasn't noticed any further evidence of malicious activity.
The company didn't disclose any further details related to the attack, like how the attackers breached the developer account and what source code was stolen.
About LastPass
LastPass is one of the largest password management companies in the world, it has more than 33 million users and 100,000 businesses.
As businesses and customers use the company's software to keep their passwords safely, there are also worries that if the company was compromised, it could let attackers get access to stored passwords.
But we should note that LastPass stores passwords in 'encrypted vaults' that can only be decoded via a customer's master password, which, according to the company, was not compromised.
Company was targeted second time
In 2021, LastPass was bit by a credential stuffing attack that enabled attackers to cross-check a user's master password. Besides this, it was also disclosed that threat actors stole LastPass master passwords and distributed the Redline password-stealing malware.
Because of this, you should always use two-factor authentication for your LastPass accounts so that the threat actors can't access your account even after it has been compromised.
"Based on what we have learned and implemented, we are evaluating further mitigation techniques to strengthen our environment. We have included a brief FAQ below of what we anticipate will be the most pressing initial questions and concerns from you. We will continue to update you with the transparency you deserve," said LastPass.
CySecurity will update its readers about further updates.
