DEV Community

Cover image for 7 Publicly Known LastPass Security Breaches since 2011
Privacy Guides by PrivacyTools
Privacy Guides by PrivacyTools

Posted on • Originally published at privacytools.io

7 Publicly Known LastPass Security Breaches since 2011

The security team of the popular password manager LastPass can't seem to catch a break. This is the second security breach this year, and they are connected. Overall, there are seven publicly known security incidents since 2011. PrivacyTools.io is keeping track of privacy related incidents on this page.

"We recently detected unusual activity within a third-party cloud storage service, which is currently shared by both LastPass and its affiliate, GoTo," the company said.

"We have determined that an unauthorized party, using information obtained in the August 2022 incident, was able to gain access to certain elements of our customers' information."

Customers' passwords haven't been compromised due to LastPass's Zero Knowledge design. But it was also noted the full scope of the incident is not yet identified and what information has been accessed by the hacker.

So far, LastPass has been transparent about past security incidents and breaches and publishes them in their blog. We are advising our readers to look for alternative password managers recommended on our website. The choices are great: Open-source, free, secure, user-friendly and self-hostable.

Top comments (0)