LastPass Security Incident

Recent Stories

January 9, 2023

Jan 09
LastPass Security Incident

March 31, 2022

Mar 31
Vulnerability in the Spring Framework (CVE-2022-22965)

December 10, 2021

Dec 10
Critical Vulnerability in log4j (CVE-2021-44228)
News Archive
January 9, 2023
John Ives

Summary

(Updated: January 9th, 2023)

LastPass notified us of a security incident in August 2022. We were informed in January 2023 by LastPass representatives that all customer vaults were in the encrypted backup that was acquired by the attackers. This means your credentials could be susceptible to exposure. [1]

Please see our guidance and FAQ regarding this incident at the CalNet LastPass service page. [2] [3]

References

[1] https://blog.lastpass.com/2022/12/notice-of-recent-security-incident/

[2] https://calnetweb.berkeley.edu/calnet-me/lastpass-premium/lastpass-breach-december-2022

[3] https://calnetweb.berkeley.edu/calnet-me/lastpass-premium/lastpass-breach-2022/lastpass-breach-2022-faq