Bleeping Computer

LastPass: DevOps engineer hacked to steal password vault data in 2022 breach

LastPass revealed more information on a "coordinated second attack," where a threat actor accessed and stole data from the Amazon AWS cloud storage servers for over two months. LastPass disclosed a ...

Don't click on the LastPass 'create backup' link - it's a scam

Phishing campaign tries to reel in master passwords updated Password managers make great targets for attackers because they ...
Dark Reading

LastPass Breach Reveals Important Lessons

The LastPass breach will be remembered as paradigmatic. The blast radius from this August 2022 breach grew from bad to catastrophic during a six-month period. Initially, the LastPass CEO declared the ...
Yahoo

LastPass owner GoTo says hackers stole customers' backups

LastPass' parent company GoTo — formerly LogMeIn — has confirmed that cybercriminals stole customers’ encrypted backups during a recent breach of its systems. The breach was first confirmed by ...
BGR

LastPass Owner GoTo Says Security Breach Is Much Worse Than We Thought

LastPass issued a security update just before Christmas, advising customers that the previously disclosed breach was worse than it had previously announced. The news dropped late on the Thursday ...
SDxCentral

Password Manager LastPass Gets Hacked Again in 4 Months

A major password management company with more than 33 million users — LastPass — this week confirmed its second breach within four months. In August, the company discovered that a threat actor gained ...
Tidbits

Additional GoTo Data Stolen in the LastPass Breach

On the blog of remote collaboration and IT software company GoTo, CEO Paddy Srinivasan writes: Our investigation to date has determined that a threat actor exfiltrated encrypted backups from a ...