Tuesday, January 21, 2025
HomeCyber AttackLastPass Hacked - Attackers Breached Cloud Storage & Access Customer Data

LastPass Hacked – Attackers Breached Cloud Storage & Access Customer Data

Published on

SIEM as a Service

Follow Us on Google News

Using data from the August 2022 incident, LastPass experienced a breach of user information within a third-party cloud storage service.

LastPass is a freemium Android password manager that simply collects encrypted passwords online, and LogMeIn, Inc. obtained the LastPass in October 2015.

“We recently detected unusual activity within a third-party cloud storage service, which is currently shared by both LastPass and its affiliate, GoTo,” the company said.

“We have determined that an unauthorized party, using information obtained in the August 2022 incident, was able to gain access to certain elements of our customers’ information.”

The breach is the subject of an ongoing investigation conducted by Mandiant, according to LastPass CEO Karim Toubba, who also stated that law enforcement had been informed.

Additionally, the company stated that customer passwords “remain safely encrypted due to LastPass’s Zero Knowledge architecture” and have not been compromised.

August 2022 Saw a Breach of the Organization’s Developer Environment

In the August incident, a developer account that had been hijacked by hackers had allowed them access to the company’s developer environment.

At the time, the company stated that no customer information or passwords had been exposed and that the attacker had only accessed “source code and some proprietary LastPass technical information” as a result of the incident.

The company then disclosed that the attackers of the security breach in August had internal access to its systems for four days before being ejected.

It’s unclear in this instance what exact consumer information was disclosed.

“We are working diligently to understand the scope of the incident and identify what specific information has been accessed”, according to LastPass’s recent notice of a security incident.

“We can confirm that LastPass products and services remain fully functional”. 

Company’s Response to the Incident

The company promised to implement improved security controls and monitoring tools to stop further threat activity.

“As part of our efforts, we continue to deploy enhanced security measures and monitoring capabilities across our infrastructure to help detect and prevent further threat actor activity”, LastPass.

Penetration Testing As a Service – Download Red Team & Blue Team Workspace

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Microsoft Rolls Out New Administrator Protection Feature Under Windows Security

Microsoft has announced the release of Windows 11 Insider Preview Build 27774 to the...

New Contacto Ransomware Evades AV Detection & Uses Windows Console for Execution

In early January 2025, a new ransomware strain identified as Contacto surfaced, showcasing advanced...

OWASP Smart Contract Top 10 2025 Released – What’s new!

The Open Web Application Security Project (OWASP) has released its updated Smart Contract Top 10 for...

Ransomware Attack Forces UK Brit High School to Close Doors For Students

A ransomware attack has compelled UK Brit, a prominent British high school, to close...

API Security Webinar

Free Webinar - DevSecOps Hacks

By embedding security into your CI/CD workflows, you can shift left, streamline your DevSecOps processes, and release secure applications faster—all while saving time and resources.

In this webinar, join Phani Deepak Akella ( VP of Marketing ) and Karthik Krishnamoorthy (CTO), Indusface as they explores best practices for integrating application security into your CI/CD workflows using tools like Jenkins and Jira.

Discussion points

Automate security scans as part of the CI/CD pipeline.
Get real-time, actionable insights into vulnerabilities.
Prioritize and track fixes directly in Jira, enhancing collaboration.
Reduce risks and costs by addressing vulnerabilities pre-production.

More like this

Hackers Deploy Web Shell To Abuse IIS Worker And Exfiltrate Data

An attacker exploited a vulnerability in the batchupload.aspx and email_settings.aspx pages on the target...

5,000 WordPress Sites Hacked in New WP3.XYZ Malware Attack

Widespread malware campaigns detected by side crawlers exploit vulnerabilities on multiple websites where the...

QSC: Multi-Plugin Malware Framework Installs Backdoor on Windows

The QSC Loader service DLL named "loader.dll" leverages two distinct methods to obtain the...