Sign In

Communications of the ACM

ACM TechNews

LastPass, Password Manager with Millions of Users, Is Hacked

Karim Toubba, the company’s chief executive, said LastPass master passwords were nOt compromised because the company doesn’t store them.

Credit: Thomas Trutschel/Photothek/Getty Images

On Aug. 25, online password manager LastPass reported the theft of some of its source code and proprietary information, but said there is no evidence customer information from its more than 33 million users or encrypted password vaults were accessed.

LastPass' Karim Toubba said a developer account had been breached, allowing an unauthorized party to access the company's development environment.

The unusual activity was detected two weeks ago, prompting an investigation.

Toubba said the company is working with a cybersecurity and forensics firm and has rolled out additional security measures.

LastPass stores encrypted login information that users can access online with a master password, but they cannot see customers' data.

From The Wall Street Journal
View Full Article - May Require Paid Subscription


Abstracts Copyright © 2022 SmithBucklin, Washington, DC, USA


No entries found