Many are still in shock at the news that LastPass, a password manager used by more than 33 million people around the world, said a hacker recently stole source code and proprietary information after breaking into its systems.
The company however, claims that it doesn’t believe any passwords were taken as part of the breach and users shouldn’t have to take action to secure their accounts.
An investigation determined that an “unauthorised party” cracked into its developer environment, which is the software that employees use to build and maintain LastPass’s product. The perpetrators were able to gain access through a single compromised developer’s account, the company said.
It is unlikely that the stolen source code will give the criminals access to customer passwords
The attack struck a company that generates and stores hard-to-crack, auto-generated passwords for multiple accounts, like Netflix or Gmail, on behalf of its users — without the need to manually enter credentials.
Read also : Stress Leads to Cybersecurity Mistakes – Anna Collard
Cybersecurity website Bleeping Computer reported that it had asked LastPass about the breach two weeks ago.
Allan Liska, an analyst on the Computer Security Incident Response Team at cybersecurity company Recorded Future, said he was impressed with the “speedy notification” from LastPass.
“While two weeks might seem like a long time to some, it can take a while for incident response teams to fully assess and report on a situation,” he said. “It will take time to fully determine the extent of any damage that may have been as a result of the breach. However, for now it appears to not be client-impacting.”
There was speculation on social media that hackers may be able to access the keys to password vaults after stealing source code and proprietary information.
Read also : Togo Partners ECA to Establish the African Cybersecurity Center
“It is unlikely that the stolen source code will give the criminals access to customer passwords,” Liska said.
Kelechi Deca
Kelechi Deca has over two decades of media experience, he has traveled to over 77 countries reporting on multilateral development institutions, international business, trade, travels, culture, and diplomacy. He is also a petrol head with in-depth knowledge of automobiles and the auto industry