The LastPass Hack Was Worse Than We Thought.
In this video we cover the latest information about the lastpass data breach.
The LastPass data breach experienced in August and November 2022 compromised sensitive customer information. LastPass explained in a statement that a malicious actor stole source code and technical information from the company’s development environment in August and used it to target an employee.
This gave the hacker access to credentials and keys, which they used in November 2022 to access LastPass’ third-party cloud storage service. The malicious party was able to decrypt some storage volumes within the storage service by using the keys.
After decrypting the information, the hacker accessed and copied information stored on a cloud-based backup, including “basic customer account information and related metadata such as company names, end-user names, billing addresses, email addresses, telephone numbers and the IP Addresses from which customers were accessing the LastPass service. The number of affected customers has not yet been disclosed.
LastPass explained that the hacker was also able to copy a backup of customer vault data from the encrypted storage container which is stored in a proprietary binary format that contains both unencrypted data, such as website URLs, as well as fully encrypted sensitive fields such as website usernames and passwords, secure notes and form-filled data.
In response to the attack, LastPass warned its customers to be wary of social engineering and phishing attacks. It was also noted that while the company uses hashing and encryption to protect customer data, malicious actors may use brute force to guess customers’ master passwords and decrypt copies of the vault data they stole.