LastPass goes independent over a year after serious breaches

Share via:


It’s been over a year and a half since LastPass suffered back-to-back high-profile hacks, and the company now says it has separated from its parent company, GoTo.

GoTo announced that it would spin LastPass off as its own company back in December 2021, six years after buying the company. Now, the password vault company will operate under a shareholder holding company called LMI Parent.

In September 2023, security researchers said several clues pointed to this hack being used to steal over $35 million from the crypto wallets of more than 150 victims. One of those clues was apparently each of these customers had stored their “seed phrase” — a digital key required for cryptocurrency investment access — in LastPass.

And in January, LastPass started enforcing a 12-character minimum for master passwords for new customers and existing ones when resetting. This is considered the industry minimum for decent security, and although LastPass already defaulted to 12 characters, it would let customers set shorter passwords anyway, which, among other issues, security experts widely panned following its dual breaches.

The company seems to be trying to show it’s reformed. It said it established a “dedicated threat intelligence team” last year, and its recently hired executives include a former McAfee VP.

But it’s still under the same CEO, Karim Toubba, who ran the company when it revealed the truth about its 2022 breach in bits and pieces over several months. It may have a lot of work to do if it wants people to trust it again.



Source link

Disclaimer

We strive to uphold the highest ethical standards in all of our reporting and coverage. We StartupNews.fyi want to be transparent with our readers about any potential conflicts of interest that may arise in our work. It’s possible that some of the investors we feature may have connections to other businesses, including competitors or companies we write about. However, we want to assure our readers that this will not have any impact on the integrity or impartiality of our reporting. We are committed to delivering accurate, unbiased news and information to our audience, and we will continue to uphold our ethics and principles in all of our work. Thank you for your trust and support.

Popular

More Like this

LastPass goes independent over a year after serious breaches


It’s been over a year and a half since LastPass suffered back-to-back high-profile hacks, and the company now says it has separated from its parent company, GoTo.

GoTo announced that it would spin LastPass off as its own company back in December 2021, six years after buying the company. Now, the password vault company will operate under a shareholder holding company called LMI Parent.

In September 2023, security researchers said several clues pointed to this hack being used to steal over $35 million from the crypto wallets of more than 150 victims. One of those clues was apparently each of these customers had stored their “seed phrase” — a digital key required for cryptocurrency investment access — in LastPass.

And in January, LastPass started enforcing a 12-character minimum for master passwords for new customers and existing ones when resetting. This is considered the industry minimum for decent security, and although LastPass already defaulted to 12 characters, it would let customers set shorter passwords anyway, which, among other issues, security experts widely panned following its dual breaches.

The company seems to be trying to show it’s reformed. It said it established a “dedicated threat intelligence team” last year, and its recently hired executives include a former McAfee VP.

But it’s still under the same CEO, Karim Toubba, who ran the company when it revealed the truth about its 2022 breach in bits and pieces over several months. It may have a lot of work to do if it wants people to trust it again.



Source link

Disclaimer

We strive to uphold the highest ethical standards in all of our reporting and coverage. We StartupNews.fyi want to be transparent with our readers about any potential conflicts of interest that may arise in our work. It’s possible that some of the investors we feature may have connections to other businesses, including competitors or companies we write about. However, we want to assure our readers that this will not have any impact on the integrity or impartiality of our reporting. We are committed to delivering accurate, unbiased news and information to our audience, and we will continue to uphold our ethics and principles in all of our work. Thank you for your trust and support.

Website Upgradation is going on for any glitch kindly connect at office@startupnews.fyi

More like this

Centre mulls income tax cut in 2025-26 Budget amid...

The Union government is reportedly considering a reduction in...

Prasar Bharati’s OTT App WAVES Breaches 1 Mn Downloads...

SUMMARY WAVES was launched with a content slate spanning...

Israel to launch six bitcoin mutual funds

This approval ends a two-year and application process...

Popular

Upcoming Events

Startup Information that matters. Get in your inbox Daily!