Skip to main content

Lastpass Data Breach Frightens Users, Some Say Hack ‘May Be Worse Than They Are Letting on’

People involved in financial tech, software programming, cyber security, and cryptocurrencies have been talking about the Lastpass data breach that was disclosed two days ago. The password management company detailed that a breach, committed earlier this year, allowed hackers to obtain a “backup of customer vault data.”

Lastpass Reveals ‘Threat Actor Was Also Able to Copy a Backup of Customer Vault Data’

On Dec. 22, 2022, the password management firm Lastpass disclosed that an “unknown threat actor” managed to breach the firm’s cloud-based storage environment in or around Aug. 2022. As soon as the news was published, the Lastpass data leak has been a topical discussion on social media and forums. A great number of people believe that Lastpass’ situation “may be worse than they are letting on.”

“Based on our investigation to date, we have learned that an unknown threat actor accessed a cloud-based storage environment leveraging information obtained from the incident we previously disclosed in August of 2022,” Lastpass disclosed. The password management company added:

The threat actor was also able to copy a backup of customer vault data from the encrypted storage container which is stored in a proprietary binary format that contains both unencrypted data, such as website URLs, as well as fully-encrypted sensitive fields such as website usernames and passwords, secure notes, and form-filled data.

Lastpass insists the encrypted fields are secure with 256-bit AES encryption and the info can only be decrypted by leveraging each user’s master password using the firm’s zero-knowledge architecture. “As a reminder, the master password is never known to Lastpass and is not stored or maintained by Lastpass,” the company detailed.

Lastpass’ Security Reassurance Doesn’t Seem to Convince a Number of Critics

However, a number of reports believe that the situation is worse than Lastpass is letting on. Reviewgeek.com’s Andrew Heinzman stresses in his report to “please, stop using Lastpass.” “Even if you use a strong master password, there’s a chance that hackers will try to phish some information out of you,” Heinzman wrote. The author added:

To be clear, Lastpass is still investigating this data breach. And after four months of ‘sorry, it’s worse than we thought,’ customers are rightfully worried that Lastpass doesn’t have all the details. For all we know, things could get even worse. We asked our readers to stop using Lastpass in July 2020.

Crypto supporter Udi Wertheimer also warned people that if they use Lastpass “attackers probably have a copy of your vault.” Wertheimer’s recommendation is the same as Heinzman’s as the digital currency proponent insisted that users should “stop using Lastpass.”

“We don’t know how bad things are,” Wertheimer added. “It’s possible that attackers have ongoing access, so don’t just change your passwords and put them back into Lastpass.” Moreover, a Twitter user who claims to have worked as an engineer for the company seven years ago also noted that Lastpass’ breach situation is a big deal.

“I worked at Lastpass as an engineer a long time ago. 7+ years ago. My 2 cents on the situation,” the individual said. “This is the worst breach Lastpass has had. By a lot. The key difference is that customer vaults were accessed this time, which are kept in a completely separate database.”

What do you think about the Lastpass data breach and the speculation that it is worse than Lastpass is letting on? Let us know what you think about this subject in the comments section below.



from Bitcoin News https://ift.tt/0VMnweW
Labels:

Comments

Post a Comment

Popular posts from this blog

Deep Web Roundup: Dream Adds Monero and Bitcoin Tumbler “Chip Mixer” Launches

The darknet has been quiet of late, which is the way it’s meant to be. No news means no mega busts, honeypots, or mass market shutdowns. Even when it’s out of the spotlight though, the deep web is quietly making news, whether trialling the latest privacy coins or the newest coin mixers that promise to restore a little of the privacy that’s being stripped away from bitcoin users on a daily basis. Also read: U.S. Agency ICE Conducts Investigations That Exploit Blockchain Activity The Battle for Privacy Heats Up Privacy is all relative, but of late there’s been relatively little privacy to be enjoyed by bitcoin users. Blockchain monitoring software is becoming more sophisticated and more common, with U.S. law enforcement agencies using it to profile and hunt down deep web users. Chip Mixer is a relatively new bitcoin tumbler that’s designed to restore some of that privacy. Available on both the clearnet and darknet, the service uses a variety of techniques to obfuscate blockchain m...
10 comments
Read more

Ombudsman Receives Complaints About Crypto Investments in Spain

The Spanish ombudsman has been receiving complaints about cryptocurrency and how some Spanish citizens investing in these vehicles have lost everything. In his annual report, Angel Gabilondo recognized the rise of cryptocurrencies as a new problem due to the little or no regulation crypto sees in the country. In the same way, the EU has also warned about these assets recently. Spanish Ombudsman Gives His Take on Crypto Angel Gabilondo, the Spanish ombudsman, has given his take regarding cryptocurrencies and the effects they have on citizens investing in some of these projects. Gabilondo said in his yearly report that cryptocurrencies have become “a new problem” during the year examined, with many people having lost all of their funds invested. The report states : Cryptocurrency exchange companies or platforms are not regulated in the legal system, are not subject to any public supervision system, nor do they benefit from deposit guarantee systems. The affected users that sought...
Post a Comment
Read more

2021 Bitcoin Price Predictions: Analysts Forecast BTC Values Will Range Between Zero to $600K

As bitcoin has touched new price highs on Thursday nearing the $50k handle, people have been curious as to where the price will go in the future. Meanwhile, despite the gains so far, a number of luminaries, analysts, executives, and proponents from the crypto space believe the leading crypto asset will reach between $60k to six-digits this year. Mike Novogratz Predicts $100K Bitcoin: ‘Other CFOs and CEOs Are Saying, What Should We Be Doing?’ Satoshi Nakamoto’s invention has gained mass appeal in recent times as the leading digital asset bitcoin ( BTC ) has reached its highest value ever in 2021. On Thursday morning (EST), BTC spiked to an all-time high (ATH) at $48,697 per unit. Earlier in the morning at around 2 a.m., bitcoin was exchanging hands for $44,485 and saw an 8.98% increase since then. At the time of publication, at 6:30 p.m. (EST) on February 11, 2021, bitcoin (BTC) is swapping for $47,821 per coin. With BTC so close to the $50k mark, people have been forecasting ...
Post a Comment
Read more