LastPass has disclosed a security incident that exposed some customer information after attackers compromised a third-party supplier used by the company.
The incident involved Klue, a market intelligence platform that integrates with LastPass systems, including Salesforce and Gong.
According to LastPass, the company was informed of the breach on June 12 and immediately launched an investigation. The investigation found that attackers obtained OAuth tokens held by Klue and used them to access customer data stored within LastPass’s Salesforce environment.
The company said the impact was limited to systems connected to Klue and did not affect LastPass products, services, infrastructure, or customer password vaults. LastPass also stated that there is no evidence that any Gong-related data was accessed during the incident.
The exposed information was limited to business contact and customer relationship management (CRM) data. This included customer names, email addresses, phone numbers, physical addresses, support case information, and sales-related records.
After discovering the incident, LastPass disabled employee access to Klue, rotated the exposed API access tokens, and conducted a detailed investigation in coordination with Klue and Salesforce. The company also notified law enforcement and said it continues to work with the broader cybersecurity community through its Threat Intelligence, Mitigation, and Escalation (TIME) team.
LastPass is now implementing additional security measures and strengthening its defenses to reduce the risk of similar incidents in the future.
The company is advising customers to remain alert for phishing emails, suspicious phone calls, and other social engineering attempts that may use exposed contact details. LastPass reminded users that company representatives will never ask for a customer’s master password.
As part of the disclosure, LastPass shared several indicators of compromise, including suspicious IP addresses and email sender domains that may be linked to the attack.
If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.
