Hackers Stole Source Code and Proprietary Information From LastPass
NATO probes data breach of classified military documents, Apple's Lockdown mode can identify targets, Liberty Counsel hacked exposing large database, DoorDash confirms compromise, much more
Password management firm LastPass disclosed it was hacked two weeks ago, enabling threat actors to steal the company's source code and proprietary technical information.
The company released a security advisory confirming that it was breached through a compromised developer account that hackers used to access the company's developer environment. LastPass says there is no evidence that customer data or encrypted password vaults were compromised. Still, the threat actors did steal portions of their source code and "proprietary LastPass technical information."
The company said it deployed containment and mitigation measures and engaged a leading cybersecurity and forensics firm, but did not provide further details regarding the attack, how the threat actors compromised the developer account, and what source code was stolen. (Lawrence Abrams / Bleeping Computer)
Related: Last Pass, Bloomberg, The Register, CRN, PCMag, Security Affairs, SecurityWeek, The Register, iTnews - Security, WebProNews
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.