LastPass Suffers Security Breach But Believes Customer Data Is Safe
- By Bree Ann Russ
- Aug 26, 2022
Many of us use password managers to keep our secure passwords safe. However, even secure software titles we rely on can still have issues with breaches. LastPass, the freemium password manager for businesses and consumers alike, announced on August 25, 2022, that it suffered from a data breach.
The company revealed that a compromised developer account led to a breach when a hacker accessed their developer environment. Hackers stole some proprietary information and source code, but thankfully, no sensitive user data was lost in this breach. All master passwords, account information, and encrypted passwords were accessed during the breach.
LastPass immediately started an investigation into how the breach occurred, along with the full scope of what the hackers accessed. However, LastPass CEO Karim Toubba suggests that people not take any type of action since their accounts were not a part of the breach.
LastPass is responding to this incident by deploying measures meant to contain and mitigate any damage. Plus, they hired a prominent cybersecurity and forensics firm to help discover as much information as possible about the breach.
The damage is contained, in part due to the investigation, and additional security measures have been implemented. The investigation also shows no further evidence that the unauthorized activity is ongoing.