Security News > 2022 > September > LastPass says hackers had internal access for four days
LastPass says the attacker behind the August security breach had internal access to the company's systems for four days until they were detected and evicted.
While method through which the attacker was able to compromise a Lastpass developer's endpoint to access the Development environment, the investigation found that the threat actor was able to impersonate the developer after he "Had successfully authenticated using multi-factor authentication."
Following the incident, Lastpass has "Deployed enhanced security controls including additional endpoint security controls and monitoring," as well as additional threat intelligence capabilities and enhanced detection and prevention technologies in both Development and Production environments.
In the letter sent to customers after BleepingComputer's emails, Lastpass confirmed it was hacked two weeks before and that the attackers had stolen some source code and proprietary technical information.
"Two weeks ago, we detected some unusual activity within portions of the LastPass development environment," the company said at the time.
LastPass provides one of the most popular password management software in the world, with the company claiming that it's used by over 33 million people and 100,000 businesses.