LastPass users' backups were stolen by LastPass hackers

LastPass users' backups were stolen by LastPass hackers ...

Hackers who accessed LastPass' parent company, GoTo, have confirmed that hackers who breached the service managed to access the encrypted backups of the users during the last security breach of their systems. On November 30, the company itself confirmed this defect. So unauthorized third parties had gained access to some of the information of some customers in a cloud service shared by LastPass and GoTo.

The attackers accessed information they had obtained in a previous failure of LastPass systems in August of last year. The hackers then gained access to the companies' shared cloud data. GoTo then stated that it was investigating the incident.

After the investigation period, the company has admitted that the attack affected several of its products. These include the enterprise communications tool Central, the online meeting platform Join.me, the hosted VPN service Hamachi, and Remotely Anywhere.

Everything points to the fact that the attackers managed to obtain encrypted backup copies of these services, as well as the company's encryption key, which protects the data. "The affected information, which varies by product, may include account names, encrypted passwords, and a portion of product settings and license information," according to GoTo's CEO Paddy Srinivasan.

Despite what occurred and the time it took to determine the scope of the breach, GoTo has provided no help to resolve the concerns they faced, nor advice on how to improve their security to the affected customers. Neither are personal information such as date of birth, residence address, or Social Security numbers (in the US customers).

However, the same is not the case with LastPass, since hackers managed to smuggle customers' names, email addresses, phone numbers, and billing information.

GoTo has not disclosed how many of its customers have been affected. In total, they have 800,000 customers, both companies and individuals. They are advised to change passwords and change their multi-factor authentication (MFA) settings out of extreme caution.

You may also like: