How did LastPass hacked?

LastPass recently suffered a major security breach due to the negligence of one of its engineers who failed to update a media software package on their home computer. This unfortunate incident serves as a stark reminder of the dangers of not keeping software up-to-date, especially when it comes to cybersecurity.

Last week, the password management service disclosed that an unidentified group of hackers had gained access to partially encrypted password vault data and customer information. The hackers were able to carry out this attack by leveraging information stolen from an earlier breach and exploiting a vulnerability in a third-party media software package. This allowed them to launch a coordinated second attack between August and October of 2022.

The hackers had specifically targeted one of the four DevOps engineers and infected their home computer with keylogger malware. This malware allowed the hackers to steal the engineer's login credentials and gain access to the cloud storage environment.

Upon further investigation, it was discovered that the hackers exploited a flaw in Plex, a streaming media service, which had been patched nearly three years ago. This flaw allowed the hackers to execute code on the engineer's computer and ultimately gain access to LastPass's systems.

This incident underscores the critical importance of keeping software up-to-date, particularly when it comes to sensitive data and information. Failure to do so can lead to devastating consequences, as seen in the case of LastPass. It's crucial that individuals and organizations take cybersecurity seriously and implement robust measures to protect themselves from potential threats.