LastPass, a company well-known for its well-liked password manager, and its subsidiary, GoTo, are alerting clients to a fresh data breach that seems connected to a recent cybersecurity incident.
In 2015, LogMeIn, a provider of remote access solutions, purchased LastPass. LogMeIn announced in February 2022 that it would change its name to GoTo and start providing unified communications solutions. LastPass reported that it recently discovered strange activity within a third-party cloud storage service it shares with GoTo in emails to customers and a notice posted on its website.
Although Mandiant’s assistance in the investigation is still being used, it appears that the new breach is connected to an incident that was made public in August 2022.