More than 33 million users use the password manager LastPass, however it was recently compromised after an unauthorised person gained access to the developer environment and took the company's source code and confidential data. According to LastPass, no passwords are believed to have been stolen as a result of the incident, therefore users won't need to take any additional steps to secure their accounts. The password manager has likewise attested to the smooth operation of their goods and services.
According to a recent blog post by the password manager, some odd behaviour was recently discovered in various areas of the LastPass development environment. The corporation claimed that there was no proof that the event entailed any access to customer data or encrypted password vaults, as was previously mentioned.
LastPass has come to the conclusion that a single compromised developer account allowed an unauthorised entity to access specific areas of the LastPass development environment. As a result, the hacker gained access to some LastPass technological secrets and source code.
As was already said, LastPass has made sure that all of its products and services are currently functioning regularly.
According to LastPass CEO Karim Toubba, the organisation has implemented containment and mitigation procedures in response to the event. For the same purpose, LastPass has also hired a top cybersecurity and forensics company. The password manager has also reached a point of containment and reportedly doesn't observe any new indications of illegal behaviour.