#Lastpass security breach 2019 full#
It looks like this new attack is connected, as Toubba says it determined that hackers gained access to user data using information obtained in the incident earlier this year. The LastPass service remains “fully functional” despite the breach and the company has launched a full investigation:
This comes just months after LastPass confirmed that hackers had stolen some of its source code in August and had access to LastPass’ internal systems for four days before getting detected. Our customers' passwords remain safely encrypted due to LastPass’s Zero Knowledge architecture.” “We have determined that an unauthorised party, using information obtained in the August 2022 incident, was able to gain access to certain elements of our customers' information. We immediately launched an investigation, engaged Mandiant, a leading security firm, and alerted law enforcement.” “We recently detected unusual activity within a third-party cloud storage service, which is currently shared by both LastPass and its affiliate, GoTo.
It’s still not clear what information hackers got access to or how many customers were affected, but in his post, Toubba assured that users’ passwords weren’t compromised: According to a post from LastPass CEO Karim Toubba, hackers accessed a third-party cloud storage service used by the password manager and were able to gain access to customer information. LastPass has experienced another data breach, this time exposing user data. Article by Christopher Lauder, Client Engagement Executive, Rela8 Group
0 kommentar(er)
