Nexus -
info_outline
Stay signed in to save your points and redeem your rewards at Nexus

Your Rewards are Waiting!

Stay signed in to save the points you've earned. Click on the points to redeem your rewards at Nexus before they expire.

Login In Now
Cybersecurity

World’s most popular password manager says it was hacked

By Margi Murphy
The company doesn’t believe any passwords were taken as part of the breach and users shouldn’t have to take action to secure their accounts, according to a blog post on Aug 25. — Fotolia/TNS

LastPass, a password manager used by more than 33 million people around the world, said a hacker recently stole source code and proprietary information after breaking into its systems.

The company doesn’t believe any passwords were taken as part of the breach and users shouldn’t have to take action to secure their accounts, according to a blog post on Aug 25.

ALSO READ: Why you should stop using passwords and start using 'passphrases'

An investigation determined that an “unauthorised party” cracked into its developer environment, which is the software that employees use to build and maintain LastPass’s product. The perpetrators were able to gain access through a single compromised developer’s account, the company said.

The attack struck a company that generates and stores hard-to-crack, auto-generated passwords for multiple accounts, like Netflix or Gmail, on behalf of its users – without the need to manually enter credentials. LastPass lists Patagonia, Yelp Inc and State Farm as customers on its website.

ALSO READ: Are you using any of these common passwords? Here’s why you should change it

Cybersecurity website Bleeping Computer reported that it had asked LastPass about the breach two weeks ago.

Allan Liska, an analyst on the Computer Security Incident Response Team at cybersecurity company Recorded Future, said he was impressed with the “speedy notification” from LastPass.

ALSO READ: Are you affected by the biggest password leak in history? Here's how to check

“While two weeks might seem like a long time to some, it can take a while for incident response teams to fully assess and report on a situation,” he said. “It will take time to fully determine the extent of any damage that may have been as result of the breach. However, for now it appears to not be client-impacting.”

LastPass didn’t immediately respond to a request for further comment.

There was speculation on social media that hackers may be able to access the keys to password vaults after stealing source code and proprietary information.

“It is unlikely that the stolen source code will give the criminals access to customer passwords,” Liska said. – Bloomberg

Get 20% OFF The Star Digital Access

Monthly Plan

RM 13.90/month

RM 11.12/month

Billed as RM 11.12 for the 1st month, RM 13.90 thereafter.

Best Value

Annual Plan

RM 12.33/month

RM 9.87/month

Billed as RM 118.40 for the 1st year, RM 148 thereafter.

Related stories:
Follow us on our official WhatsApp channel for breaking news alerts and key updates!
Passwords

Trending in Tech

Others Also Read

Load more

Copyright © 1995- Star Media Group Berhad [197101000523 (10894-D)]

Best viewed on Chrome browsers.