News, 26.01.2023, 10:30 AM
The company GoTo (formerly LogMeIn) which owns LastPass has announced that unidentified attackers were able to steal encrypted backups of some users’ data along with the encryption key for some of those backups in the attack which happened in November 2022.
GoTo shared new knowledge about the incident that hit the company on November 30, 2022. GoTo previously confirmed that unusual activity was observed in its cloud storage service as well as development environment.
The company has now said that the incident may affect some of its enterprise products, including encrypted copies of customer data, which are emergency recovery copies of data for Central, Pro, join.me, Hamachi and RemotelyAnywhere.
The affected information, which varies by product, may include account usernames, passwords, part of the multi-factor authentication (MFA) settings, as well as some product settings and licensing information, the company said.
In addition, the incident affected the MFA settings of some users of Rescue and GoToMiPC, although there is no evidence that the encrypted databases associated with these two services were exfiltrated.
The company did not disclose how many users were affected, but said it is contacting victims directly to provide additional information and recommend specific steps to protect their accounts.
GoTo has also taken steps to reset the passwords of affected users and require them to re-enable their MFA settings.
LastPass revealed in December 2022 that the hackers used the information stolen in the previous one the attack that took place in August i stole a huge amount of data about clients stored by the cloud storage service used by GoTo and LastPass.