LastPass got hacked but no user data leaked, the CEO ensures


Last month, LastPass admitted that an unauthorized party was able to breach the system and had access to sensitive information for about four days. LastPass’ CEO said that the company worked closely with security experts from Mandiant and the investigation revealed that no user data has been compromised.

LastPass got hacked but no user data leaked, the CEO ensures

The attacker, however, was able to access LastPass’ password manager source code as well as technical information. The access was limited to the service’s development environment which has nothing to do with user data. Not to mention LastPass itself doesn’t have access to users’ master passwords, which in turn are needed to decrypt the data.

The investigation suggests that the attacker used a developer’s endpoint and impersonated the developer after authenticating successfully using multi-factor authentication.


Source link

Share post:




More like this

The Top 10 Games On Switch

The Nintendo Switch has an incredibly strong library...

Space Elevators Are Less Sci-Fi Than You Think

Space elevators are often dismissed as a science...