March 1, 2023

LastPass Reveals Second Attack Resulting in Breach of Encrypted Password Vaults

LastPass revealed in December 2022 that a significant data breach occurred, which enabled cyber-attackers to gain access to encrypted password vaults. The breach was the result of the same perpetrator launching a second attack on LastPass systems. According to the company, the breach occurred due to one of its DevOps engineers having their personal computer compromised and infected with a keylogger. This happened as part of a persistent cyber-attack that extracted confidential data from LastPass's Amazon AWS cloud storage servers. The attackers utilised information that was stolen during the initial attack, as well as details obtained from a third-party data breach and a flaw in a third-party data breach and a flaw in a third-party media software package to execute a synchronized second attack.

Read more here.

All Posts

Let's talk

We’re here to help! Submit your information or call the office on +44 (0)1243 670 854 and a member of our team would be happy to help.

Who are Cybaverse?
How can we support your business?
Why work with us?
Langstone Technology Park,
Langstone Road, Havant,
Hampshire, PO9 1SA

Cirencester Growth Hub,
The Alliston Centre, Stroud Road,
Gloucestershire, GL7 6JR
+44 (0)1243 670 854
sales@cybaverse.co.uk
LinkedIn
Consulting Services
Managed Services
Security Operations Center (SOC) Services
Managed Awareness Training
Managed Compliance
Managed Penetration Testing
Managed Detection & Response
MSSP 360
Company
© YYYY Cybaverse LTD. All rights reserved.
Registered in England with Company Number 11537535.
By clicking “Accept”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.
Deny
Accept