![]() ![]() ![]() And this is a company that offers to protect customer passwords but seemingly can’t provide adequate security to prevent attackers. The bigger problem is that GoTo and LastPass keep being breached. The most recent hack of LastPass may not be related to the GoTo breach, but there is a lot of crossover in the timeline. Forward to January and LastPass’s parent company is now posting that hackers obtained an encryption key in what looks like a similar attack. The same hacker also stole a copy of encrypted password vaults. The last claim is rather odd given that in December, LastPass, which is owned by GoTo, advised customers that a hacker had copied data from backups that contained customer account information. “At this time, we have no evidence of exfiltration affecting any other GoTo products other than those referenced above or any of GoTo’s production systems,” the blog post reads. GoTo is directly informing affected customers and although the stolen passwords are encrypted and that it’s resetting account passwords out of caution. Although noting that databases relating to its Rescue and GoToMyPC products were not affected, GoTo advises that the MFA settings of a small number of users of those products were affected. The affected information may include account usernames, salted and hashed passwords, a portion of multifactor authentication settings, and some product settings and licensing information. “We also have evidence that a threat actor exfiltrated an encryption key for a portion of the encrypted backups,” the company added. In a blog post to customers, GoTo said an investigation into a “security incident” in November has found that a threat actor exfiltrated encrypted backups from a third-party cloud storage service relating to the company’s Central, Pro,, Hamachi and RemotelyAnywhere products. ![]() GoTo Technologies USA Inc., the parent company of password manager LastPass US LP, advised customers today that hackers have obtained encrypted backups and an encryption key to access some of them. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |