![]() ![]() The company emphasized that encrypted customer data “can only be decrypted with a unique encryption key derived from each user’s master password using our Zero Knowledge architecture.” LastPass also said that it’s not aware of hackers gaining access to unencrypted credit card data. Worse, hackers also copied a backup of customer data that “contains both unencrypted data, such as website URLs, as well as fully-encrypted sensitive fields such as website usernames and passwords, secure notes, and form-filled data.” “The threat actor copied information from backup that contained basic customer account information and related metadata including company names, end-user names, billing addresses, email addresses, telephone numbers, and the IP addresses from which customers were accessing the LastPass service,” the company explained. Indeed, the company has since discovered that an unknown hacker group gained access to backup data that includes encrypted and unencrypted information. The popular password manager LastPass has confirmed today that a previous security breach that the company reported back in August 2022 was much more serious than it seemed. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |