LastPass users are once again being warned about stolen personal data, though this time the breach happened through one of the company’s outside partners. Here are the details.
As reported by TechCrunch, LastPass is emailing users affected by a breach at market research firm Klue, which allowed hackers to access customer information and support case data.
The news came as LastPass shared more information on a blog post, where it explained:
The information accessed was limited to standard business contact information and related customer relationship management (CRM) data, including customer names, phone numbers, email addresses, and physical addresses, as well as support case data and sales-related data.
LastPass said that upon learning about the incident, the company revoked employee access to Klue, rotated the exposed API tokens, notified law enforcement, and launched “a detailed investigation into the scope of the event, working with our contacts at both Klue and Salesforce.”
The company explains that Klue’s platform integrates with Salesforce and Gong systems.
As a result, LastPass is recommending that customers “remain vigilant of potential phishing attacks or social engineering attempts” leveraging the compromised information. LastPass also shared the following IP addresses and email sender domains associated with the attackers, which companies can use to search for related activity in their systems:
IP Addresses:
- 138.226.246[.]94
- 94.154.32[.]160
- 159.183.215[.]61
- 159.183.181[.]239
Email Sender Domains:
- baccarat.com[.]au
- robinskitchen.com[.]au
- house.com[.]au
This is the latest in a series of security incidents affecting LastPass. In 2015, hackers obtained account email addresses, password reminders, authentication hashes, and cryptographic salts, although LastPass said encrypted vault data was not accessed.
In 2022, an attacker compromised a developer account and stole source code and technical information. The attacker later used that information to access cloud backups containing customer records and encrypted password vaults, along with unencrypted details such as names, billing addresses, email addresses, and phone numbers.
To learn more about the Klue breach and LastPass’s response, follow this link.
Worth checking out on Amazon
FTC: We use income earning auto affiliate links. More.
