In a statement released yesterday, LastPass CEO Karim Touba notified customers they detected unusual activity within a third-party cloud storage service, which is currently shared by both LastPass and its affiliate. Touba further explained threat actors managed to access customer data stored in the compromised storage service. LastPass believes the unauthorized party, used information obtained in an August 2022 incident to access customer data. LastPass said it hired security firm Mandiant to investigate the incident and notified law enforcement of the attack. Touba assured the public that customers’ passwords remain safely encrypted due to LastPass’s Zero Knowledge architecture.
Watch the Video
How does Binary Defense help protect your organization? With best in breed cybersecurity tactics, techniques, and services, we make sure that your environment is secure against the most advanced attacks.