Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
LastPass Hack Update: user vault data and information stolen
#1
Quote:Password management service LastPass announced today that the disclosed password breach of August 2022 was more serious than it thought initially. The update confirms that user vault data and personal information was obtained by the threat actor.

The attacker used the obtained data for another attack. LastPass confirmed that it suffered another data breach of a third-party cloud storage that is shared with its former parent company GoTo. User information were obtained by the attacker, but attackers did not access user vaults according to LastPass' initial message regarding the incident.

User data is at risk
The attacker managed to obtain a treasure trove of information during the hack. Not only did they manage to obtain customer data, such as names, phone numbers and email addresses, they also managed to obtain customer vault data. While most of the vault data is encrypted, all that stands between access is the master password.

A weak master password is broken easily with brute force attempts. LastPass' best practices regarding master password use may protect customer data against brute force attacks, as it recommends passwords with at least 12 characters and a mix of numbers, letters and special characters.

Continue reading HERE
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Lastpass says hackers accessed customer data in new breach tarekma7 3 1,775 12-02-2022 , 01:19 PM
Last Post: Mike
  Over 600,000 stolen credit cards leaked after Swarmshop hack tarekma7 0 2,098 04-10-2021 , 06:26 PM
Last Post: tarekma7
  Hackers leak stolen Pfizer COVID-19 vaccine data online tarekma7 0 1,035 01-14-2021 , 09:11 AM
Last Post: tarekma7
  More information about DDoS Attack tarekma7 3 2,525 05-12-2020 , 12:13 PM
Last Post: Mike



Users browsing this thread: 3 Guest(s)