Using AWS with LastPass... A major catastrophe! 30 million encrypted consumer vaults compromised

Currently reading
Using AWS with LastPass... A major catastrophe! 30 million encrypted consumer vaults compromised

Telos

Telos

Subscriber
Mentor Media Trophy Resource
4,068
1,396
NAS
DS4l8play, DS202j, DS3623xs+, DSM 7.3.3-25847
Although an initial intrusion into LastPass ended on August 12, officials with the leading password manager said the threat actor “was actively engaged in a new series of reconnaissance, enumeration, and exfiltration activity” from August 12 to August 26. In the process, the unknown threat actor was able to steal valid credentials from a senior DevOps engineer and access the contents of a LastPass data vault. Among other things, the vault gave access to a shared cloud-storage environment that contained the encryption keys for customer vault backups stored in Amazon S3 buckets.
Click to expand...
Read on...
 
Ouch. A cardinal rule of thumb where I work is not to use my business computer for anything personal, and not to use my personal computer for anything work related.
 

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Register

Log in

Already have an account? Log in here.

Similar threads

J
Is it safe to transfer files using Chrome remote desktop
Hello! Chrome Remote Desktop is generally safe, but there are always potential risks. To enhance...
Replies
1
Views
886
Laura
Laura
M
Remote access to DS218play's shared folders using QuickConnect timing out
Welcome to the forum. While testing this over your phone is that over GSM or WIFI?
Replies
1
Views
677
Rusty
Rusty
BobW
Accessing your services inside your LAN without IPs Using NPM and Adguard
I can confirm that it is working as described in the tutorial!
Replies
1
Views
5,706
BobW
BobW
WST16
Using an analog phone remotely with VoIP (not NAS related)?
Hello, I reached this thread by chance so I don’t know if my answer is still of any values. But I'm using...
Replies
8
Views
3,157
Makuu
M
Telos
  • Question
LE cert renewal using Nginx for Synology wildcard
My Synology DDNS wildcard cert needs to be renewed. I was curious if this can be done via NPM docker. My...
Replies
0
Views
1,396
Telos
Telos
A
Using the Force... Automated Git Pull?
Yep, it helps alot to reflect ideas with someone else. I am an impediment resolver in my project roles...
Replies
9
Views
1,989
one-eyed-king
one-eyed-king
D
Anyone Using ioSafe (Synology-Based Fireproof/Waterproof NAS)?
I think if someone is running a small business that requires such protection by a regulatory or an...
Replies
4
Views
1,586
WST16
WST16

Welcome to SynoForum.com!

SynoForum.com is an unofficial Synology forum for NAS owners and enthusiasts.

Registration is free, easy and fast!

Register

Trending threads

Back
Top