More than 33 million users use the password manager LastPass, however, it was recently compromised after an unauthorized person gained access to the developer environment and took the company’s source code and confidential data.
According to LastPass, no passwords are believed to have been stolen as a result of the incident, therefore users won’t need to take any additional steps to secure their accounts. The password manager has likewise attested to the smooth operation of their goods and services.
According to a recent blog post by the password manager, some odd behaviour was recently discovered in various areas of the LastPass development environment.
The corporation claimed that there was no proof that the event entailed any access to customer data or encrypted password vaults, as was previously mentioned.
LastPass has come to the conclusion that a single compromised developer account allowed an unauthorized entity to access specific areas of the LastPass development environment. As a result, the hacker gained access to some LastPass technological secrets and source code.
As was already said, LastPass has made sure that all of its products and services are currently functioning regularly.
According to LastPass CEO Karim Toubba, the organization has implemented containment and mitigation procedures in response to the event. For the same purpose, LastPass has also hired a top cybersecurity and forensics company.
The password manager has also achieved a state of containment and is said to see no further evidence of unauthorised activity.