Lastpass, an online service for password management – a password manager – which has been available to its customers since 2008 and was acquired by the US software company GoTo for 125 million US dollars in 2015, has been experiencing worrying events for several months away.
LastPass has once again made headlines by detecting unusual network activity on a third-party cloud storage service currently used by LastPass, the password manager’s CEO, Karim Toubba, noted in a blog post on its own website.
The LastPass Dilemma – A Chronicle of Events
The origin of this incident dates back to August of this year, when LastPass claims to have noticed unusual network activity in the development environment even then. In addition, Karim Toubba explained that an unauthorized party gained access to parts of the LastPass development environment through a single compromised developer account and stole fragments of the source code and some proprietary technical information from the online service. In response, the company Mandiant, which has made a name for itself for IT security, was commissioned to investigate the incident.
A month later, this investigation revealed that cybercriminals were said to have had access to the LastPass development environment for four days. Karim Toubba went on to say that the attackers were identified and the incident resolved. It is said that no customer data or encrypted passwords were tapped at the time.
Also interesting: iPhone & Co.: Does Apple secretly collect user data?
Then, on November 30th, an update on the incident: The unusual network activities mentioned occurred again with a third-party cloud storage service. And again, Lastpass called Mandiant to clarify the incident. It is reported that “an unauthorized party was able to gain access to certain elements of our customers’ information using information obtained in August 2022.” The CEO emphasized that LastPass customers’ passwords should remain securely encrypted thanks to the zero-knowledge architecture.
Meanwhile, diligent work is being done to understand the scope of the incident and determine what specific information was accessed, it said. “In the meantime, we can confirm that LastPass products and services remain fully operational,” concluded CEO Karim Toubba.
Source: LastPass
