The company states that user data remains secure and it continues to investigate the incident. Credit: Hernan4429 / Getty Images LastPass, maker of a popular password management application, revealed Thursday that an unauthorized party gained access to its development environment through a compromised developer account and stole some source code and proprietary technical information. An initial probe of the incident has revealed no evidence that customer data or encrypted password vaults were accessed by the intruder, CEO Karim Toubba stated in a company blog post.Toubba explained that the master passwords of the company’s users are protected by a zero-knowledge architecture, which prevents LastPass from knowing or accessing those passwords.“Our products and services are operating normally,” adds LastPass spokesperson Nikolett Bacso Albaum. “In response [to the incident], we immediately initiated an investigation, deployed containment and mitigation measures, and engaged a leading cybersecurity and forensics firm.”“While our investigation is ongoing,” she continues, “we have achieved a state of containment, implemented additional enhanced security measures, and see no further evidence of unauthorized activity.” Password managers an attractive targetWhile the motive of the people responsible for this LastPass incident is unknown, password managers are a challenging but attractive target for threat actors, observes Melissa Bischoping, an endpoint security research specialist with Tanium, an endpoint management and security company. “They unlock—quite literally—a treasure trove of access to hundreds of thousands of accounts and sensitive customer data in an instant, if they are breached,” she says.Also unknown is how the developer account was compromised. Presumably, LastPass had proper authentication controls in place, but sometimes “even strong authentication solutions are not enough for various reasons,” says Rajiv Pimplaskar, CEO of Dispersive Holdings, a secure access service edge provider. LastPass able to contain the damageTaylor Ellis, customer threat analyst at Horizon3.ai, an automated penetration testing as a service company, praises LastPass for the way it has handled the incident. “Whenever a breach occurs, many organizations fail to isolate the incident quickly, or they struggle with how to guide a proper security investigation,” she explains. “As an experienced security company, LastPass at least had the home team advantage by following the correct procedures, isolating the issue on time, and preventing their customers from being severely impacted by the breach.” Related content news Is China waging a cyber war with Taiwan? Nation-state hacking groups based in China have sharply ramped up cyberattacks against Taiwan this year, according to multiple reports. By Gagandeep Kaur Dec 01, 2023 4 mins Cyberattacks Government Government news Apple patches info-stealing, zero day bugs in iPads and Macs The vulnerabilities that can allow the leaking of sensitive information and enable arbitrary code execution have had exploitations in the wild. By Shweta Sharma Dec 01, 2023 3 mins Zero-day vulnerability Vulnerabilities Security feature The CSO guide to top security conferences Tracking postponements, cancellations, and conferences gone virtual — CSO Online’s calendar of upcoming security conferences makes it easy to find the events that matter the most to you. By CSO Staff Dec 01, 2023 6 mins Technology Industry IT Skills Events news Conti-linked ransomware takes in $107 million in ransoms: Report A ransomware campaign linked to the ostensibly defunct Conti malware group has targeted mostly US businesses, in a costly series of attacks. By Jon Gold Nov 30, 2023 4 mins Ransomware Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe