Security News > 2023 > January > Mitigate the LastPass Attack Surface in Your Environment with this Free Tool
As often occurs, we are at a security limbo - on the one hand, as LastPass has noted, users who followed LastPass best practices would be exposed to practically zero to extremely low risk.
To assist them throughout this challenging time, Browser Security solution LayerX has launched a free offering of its platform, enabling security teams to gain visibility into all browsers on which the LastPass extension is installed and mitigate the potential impacts of the LastPass breach on their environments by informing vulnerable users and require them to implement MFA on their accounts and if required, roll out a dedicated Master Password reset procedure to eliminate adversaries' abilities to leverage a compromised Master Password for malicious access.
Because of the hashing and encryption methods we use to protect our customers, it would be extremely difficult to attempt to brute force guess master passwords for those customers who follow our password best practices.
Password best practices? How many people maintain password best practices? The realistic - yet unfortunate - answer is: not many.
Type A: Organizations where LastPass is used as part of the company policy for vaulting passwords to access corporate-managed apps, either for all users or in specific departments.
LayerX has released a free tool that assists security teams in understanding their organization's exposure to the LastPass breach, maps all the vulnerable users and applications, and applies security mitigations.
News URL
https://thehackernews.com/2023/01/mitigate-lastpass-attack-surface-in.html