S3 Ep124: When so-called security apps go rogue [Audio + Text]
Rogue software packages. Rogue “sysadmins”. Rogue keyloggers. Rogue authenticators. Rogue ROGUES!
LastPass
LastPass Employee PC Hacked with Keylogger to Access Password Vault
By Deeba Ahmed
The LastPass password manager has suffered yet another data breach, carried out by the same attackers involved in recent previous breaches.
This is a post from HackRead.com Read the original post: LastPass Employee PC Hacked with Keylogg…
LastPass breach: Hacker accessed corporate vault by compromising senior developer’s home PC
LastPass is, once again, telling customers about a security incident related to the August 2022 breach of its development environment and subsequent unauthorized access to the company’s third-party cloud storage service that hosted backups: ̶…
LastPass: Keylogger on home PC led to cracked corporate password vault
Seems the crooks implanted a keylogger via a vulnerable media app (LastPass politely didn’t say which one!) on a developer’s home computer.
LastPass: hackers breached the computer of a DevOps engineer in a second attack
Threat actors hacked the home computer of a DevOp engineer, they installed a keylogger as part of a sophisticated cyber attack. Password management software firm LastPass disclosed a “second attack,” a threat actor used data stolen from the August security breach and combined it with information available from a third-party data breach. Then the attackers […]
The post LastPass: hackers breached the computer of a DevOps engineer in a second attack appeared first on Security Affairs.
S3 Ep119: Breaches, patches, leaks and tweaks! [Audio + Text]
Lastest episode – listen now! (Or read the transcript.)
GoTo’s LastPass Breach: Encrypted Customer Data Taken
By Deeba Ahmed
GoTo-owned LastPass revealed that hackers stole customers’ encrypted data in a November 2022 data breach.
This is a post from HackRead.com Read the original post: GoTo’s LastPass Breach: Encrypted Customer Data Taken
GoTo admits: Customer cloud backups stolen together with decryption key
We were going to write, “Once more unto the breach, dear friends, once more”… but it seems to go without saying these days.
GoTo Says Hackers Stole Encrypted Backups, MFA Settings
GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.
The post GoTo Says Hackers Stole Encrypted Backups, MFA Settings appeared first on SecurityWeek.
S3 Ep116: Last straw for LastPass? Is crypto doomed? [Audio + Text]
Lots of big issues this week: breaches, encryption, supply chains and patching problems. Listen now! (Full transcript inside.)