all InfoSec news
LastPass reveals attackers stole password vault data by hacking an employee’s home computer
The Verge - All Posts www.theverge.com
The attacker stole credentials from a senior DevOps engineer to gain access to shared cloud storage containing the encryption keys for customer vault backups. | Illustration: Beatrice Sala
LastPass says that a threat actor was able to steal corporate and customer data by hacking an employee’s personal computer and installing keylogger malware, which let them gain access to the company’s cloud storage. The update provides more information about how the series of hacks happened last year that resulted in the …
access actor attackers backups cloud cloud storage computer corporate credentials customer customer data data devops devops engineer employee encryption encryption keys engineer hacking home information keylogger keys lastpass malware password password vault personal steal storage the company threat threat actor update vault