For the second time this year, the password manager LastPass has been compromised
For the second time this year, the password manager LastPass has been compromised |
If remembering passwords is a struggle for you and you're considering using a program like LastPass to help, you should probably reconsider. On Wednesday, the password manager acknowledged that a third party had "gained access to certain components" of its "customers' information."
Even so, this is not the first time that LastPass has experienced a similar situation. The business acknowledged in August last year that hackers had used a compromised developer account to view some of its source code. According to the official blog post regarding the theft, this stolen information assisted hackers in breaking in for the second time. In a third-party cloud storage service that is now used by LastPass and its subsidiary, GoTo, "We just discovered suspicious behavior." We contacted Mandiant, a reputable security company, and alerted law enforcement right away, according to the blog post.
However, LastPass has not yet disclosed precisely what data was compromised. In order to understand the extent of the issue, the business said it is "working carefully." However, it did provide customers some peace of mind knowing that their credentials are securely encrypted according to the Zero Knowledge architecture.
LastPass is able to maintain an additional layer of security thanks to its zero-knowledge architecture. Customers' master passwords are kept private by the company, so only users can decrypt the passwords they're storing.
Post a Comment