A master passphrase is needed to unlock and use these credentials. Users can create unique and tough-to-crack passwords for each site account and have them saved in their vault. “Our products and services are operating normally,” Toubba clarified.įor context, LastPass offers a software vault that stores your username and password pairs for logging into websites. Instead, an unauthorized party gained access to portions of the the company’s development environment through a single compromised developer account and took portions of source code and some proprietary LastPass technical information. In simple terms, no passwords were compromised. We have no evidence that this involved any access to customer data. We recently detected unusual activity within portions of the LastPass development environment and have initiated an investigation and deployed containment measures. Fortunately, the investigation shows no evidence that the incident involved any access to customer data or encrypted password vaults.
In an advisory published yesterday, CEO Karim Toubba said that an unauthorized party had stolen “portions of source code and some proprietary LastPass technical information.” Toubba said the company detected some unusual activity within portions of the the company’s development environment two weeks ago.
0 kommentar(er)
