LastPass Breach
Date: August, 2022LastPass is one of the largest password management software titles on the market. It was founded by GoTo in 2008 and was bought by LogMeIn, Inc. in 2015. LastPass has been the subject of conversation for years due to the frequency of its breaches. Now they've had another.
What Was the Breach?
This breach was said to have occurred to gain access to developmental parts of the software. LastPass has said that while the hacker attempted to access the customer data and information, their system controls and designs kept the actor from reaching anything sensitive.
How Did the Breach Occur?
This breach resulted from a hacker gaining access to parts of a LastPass developer account. LastPass CEO, Karim Toubba, said, "Our investigation revealed that the threat actor's activity was limited to a four-day period in August 2022. During this timeframe, the LastPass security team detected the threat actor's activity and then contained the incident."
When Did This Breach Occur?
The breach occurred in mid-August 2022.
Who Does the Breach Impact?
LastPass has stated that there is no proof that the actor accessed any customer information or passwords. That said, it would be highly unrealistic to presume that the hacker didn't touch any sensitive information; why else would you hack a password site?
How Many Files Does the Breach Affect?
LastPass has released no numbers regarding the accessed files at the time of writing. They have confirmed that the numbers of accessed files were low, and they expect minimal customer interruption. Read more about the LastPass breach at LastPass Source Code Targeted by Hackers.
Recent Breaches
Cisco Duo Breach
Cisco Duo is an access security provider that offers solutions for small business and commercial control products, including multi-factor authentication (MFA), single sign-on, and access control services....
AT&T Breach
American Telephone and Telegraph Company (AT&T) is the fourth-largest telecommunications provider, behind Verizon, Comcast, and China’s state-funded communications solution...
Fujitsu Limited Breach
Fujitsu Limited is the world’s sixth-largest IT service provider. Based in the Minato City ward of Tokyo, Japan, Fujitsu offers various technology solutions for personal and commercial use...
Cybersecurity and Infrastructure Security Agency Breach
The CISA collaborates with other government agencies to notify victims of breaches and respond to threats. These include the Federal Bureau of Investigation, the Multi-State Information Sharing & Analysis...
Roku Inc. Breach
Roku is a global streaming and entertainment organization. It offers solutions for direct streaming, live channels, music, niche channel entertainment, smart home devices, travel technology, audio options,...