LastPass, one of the world’s most popular online password management systems, experienced unusual activity in its developer environment for the second time this year. According to the company’s CEO, Karim Toubba, the unauthorized party accessed customer information through an external cloud service shared with the GoTo parent company, but he did not specify exactly what kind of data it was. They are currently working to assess the scope of the incident to identify what specific information was accessed by the attacker. It is not yet known if both LogMeIn and GoTo customers are affected.
During the August incident, the hackers did not have access to any user database, including the encrypted username and password pairs stored by the service, but at the same time they were able to obtain certain details of the service’s source code and access other technological information that LastPass fears.
LastPass is one of the world’s largest password management providers, with approximately 33 million individual and over 100,000 business/corporate customers. The company’s products provide a solution for the safe storage and management of the most feared user data, i.e. passwords and login IDs, therefore any incident involving LasPass can have extremely serious potential consequences.
The protection lines of the service are accordingly quite sophisticated, so your login IDs and passwords are stored in “digital safes” (vaults) that can only be opened with a master password known to the owner.
However, these master passwords were almost not compromised last year, which is why it is also critical for LastPass that, in addition to the master passwords, the user activates two-factor authentication, which drastically reduces the chance of unauthorized access.
Source: HWSW Informatikai Hírmagazin by www.hwsw.hu.
*The article has been translated based on the content of HWSW Informatikai Hírmagazin by www.hwsw.hu. If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!
*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.
*We always respect the copyright of the content of the author and always include the original link of the source article.If the author disagrees, just leave the report below the article, the article will be edited or deleted at the request of the author. Thanks very much! Best regards!