LastPass is, once again, telling customers about a security incident related to the August 2022 breach of its development environment and subsequent unauthorized access to the company’s third-party cloud storage service that hosted backups: “The threat actor leveraged information stolen during the first incident, information available from a third-party data breach, and a vulnerability in a third-party media software package to launch a coordinated second attack.” The results of both breaches are catastrophic and the … More
The post LastPass breach: Hacker accessed corporate vault by compromising senior developer’s home PC appeared first on Help Net Security.