Popular security vault application, LastPass suffers second data breach this year.
On Thursday, LastPass’s Chief Executive Officer, Karim Toubba through a blog post confirmed the data breach that happened lately.
The post further explains that an unauthorized third party accessed a third-party cloud storage service utilized by LastPass. The threat actors obtained access to a few specific elements of the client’s information.
While the password manager didn’t offer any details of the content of the stolen data, LastPass stated that the threat actors utilized the information from the August data breach to get access to the client’s information.
Meanwhile, LastPass said that they launched an investigation with Mandiant and informed law enforcement once they found unusual activity within its third-party cloud storage service. The company is trying to identify what information threat actors accessed.
LastPass CEO, Karim Toubba said, “As part of our efforts, we continue to deploy enhanced security measures and monitoring capabilities across our infrastructure to help detect and prevent further threat actor activity. We thank you for your patience while we work through our investigation. As is our practice, we will continue to provide updates as we learn more.”
Sign up for our newsletter to get the latest security news from various tech industries and cybersecurity firms.