LastPass sent this note out today. As you may recall, they had a pretty significant event earlier this year with their source code and development environments, and have had some on-and-off security issues going back to at least 2015.
Here’s the thing, even if these events were unrelated, once the bag guys know you have issues, that makes you a pretty ripe target to see if they can find other holes. The best thing, of course, is to be proactive, have good processes, conduct regular security testing, and have an excellent Incident team. It doesn’t hurt to have a third party look it over.
But if you have an incident, all that becomes even more important.
Find those holes before the bad guys do. Do you have a plan? Reach out, we can help.