The accounts of LastPass developers were hacked.
LastPass is one of the most popular password managers in the world, with over 30 million users globally. The company has announced that the popular password management application has been hacked. LastPass issued an email to its subscribers describing what had transpired and assuring them that their passwords and other sensitive data were protected despite the cyberattack. According to the email, signed by the company’s CEO, the LastPass developer’s accounts were hacked, allowing the cybercriminal to access the portions of the LastPass development environment however the products and services are running smoothly.
Unusual activity
The password manager CEO did not explain how the developer lost their account, whether they were a victim of a phishing attempt or ran malware on one of the company’s endpoints. Following the discovery of unusual activity, the business launched an investigation and discovered that there is no evidence that this event included any access to client data or encrypted password vaults. Nonetheless, LastPass implemented both containment and mitigation measures and hired top cybersecurity and forensics firm to examine what happened. While the investigation is ongoing the company claims to have established a state of containment, applied additional improved security measures, and saw no further signs of illegal activity. They are considering further mitigation strategies to enhance their environment based on what they have learned and done.
All master passwords, vault data, and personal information are secure. LastPass emphasized that there is no need for users to modify anything at this time. Password managers are applications that assist users in creating strong passwords and securely storing them. They also allow users to keep their passwords changed regularly and are widely suggested by cybersecurity experts as a wonderful method to maintain all passwords unique, safe, and continually fresh, both at work and home.