Black Arrow Cyber Advisory 26/08/2022 – LastPass Security Incident

Executive Summary

The password manager provider LastPass, has suffered a security incident from which technical information within the development environment was stolen. At this stage LastPass has stated that no customer data was affected by this breach.

What’s the risk to me or my business?

LastPass has stated that they have not seen any further evidence of unauthorised activity outside of the development environment, and that customer data will not have been affected by this security incident. Black Arrow will continue to monitor this situation and will provide updates if this changes.

What can I do?

While LastPass themselves do not recommend any action on the part of customers, as a precaution we would recommend that users change their master password and ensure that multi-factor authentication is enabled on their accounts.

Further information on this security incident be found here: Notice of Recent Security Incident - The LastPass Blog

Need help understanding your gaps, or just want some advice? Get in touch with us.

Previous
Previous

Black Arrow Cyber Threat Briefing 26 August 2022

Next
Next

Black Arrow Cyber Advisory 26/08/2022 – Plex has suffered a data breach involving customer account information