LastPass breach: Hacker accessed corporate vault by compromising senior developer’s home PC

LastPass is, once again, telling customers about a security incident related to the August 2022 breach of its development environment and subsequent unauthorized access to the company’s third-party cloud storage service that hosted backups: “The threat actor leveraged information stolen during the first incident, information available from a third-party data breach, and a vulnerability in a third-party media software package to launch a coordinated second attack.” The results of both breaches are catastrophic and the … More →

The post …

access actor attack august backups breach cloud cloud storage coordinated corporate customers data data breach developer development don't miss environment hack hacker home hot stuff incident information lastpass lastpass breach media package party remote working results security security incident service software stolen storage the company third third-party third party compromise threat threat actor unauthorized access vault vulnerability