GoTo, LastPass Notify Customers of New Data Breach Related to Previous Incident

From securityweek.com

LastPass, the company known for its popular password manager, and its affiliate, GoTo, are informing customers about a new data breach that appears to be related to a cybersecurity incident disclosed a few months ago.

Remote access solutions provider LogMeIn acquired LastPass in 2015. In February 2022, LogMeIn announced rebranding as GoTo, with the company now also offering unified communications solutions.

In emails sent to customers and a notice posted on its website, LastPass said it recently detected unusual activity within a third-party cloud storage service it shares with GoTo.

The investigation, assisted by Mandiant, is ongoing, but it appears that the new breach is related to an incident disclosed in August 2022.

Read more…