LastPass informed customers about a security breach on the company’s official blog in August 2022. This week, the company published additional information about the hack after its investigation.
Back in August 2022, LastPass informed customers that it noticed unusual activity in the development environment. It noticed relatively quickly that a third-party managed to obtain access to “parts of the development environment” through a hacked developer account.
The threat actor obtained “portions of source code and some proprietary LastPass technical information”, but could not access production environments or customer data.
LastPass asked the cybersecurity and forensics company Mandiant to assist them in the investigation of the incident. The September 2022 update reveals additional details about the security incident.
The threat actor gained access to the development environment for a 4-day period in August, according to LastPass. When LastPass security detected the incident, it was contained immediately.
No evidence was found that the threat actor had access beyond the 4-day period. Customer data and encrypted vaults were not accessed by the threat actor.
The attacker gained…