Google News Follow
Watchlist

    Govt of India issues advisory against potential phishing attacks in wake of LastPass data breach

    The Computer Emergency Response Team (CERT-In) issued an advisory in the wake of LastPass’s data breach.

    Written by Ishita Banerjee
    The Computer Emergency Response Team (CERT-In) issued an advisory in the wake of this data breach. (Photo Credits- Reuters)
    The Computer Emergency Response Team (CERT-In) issued an advisory in the wake of this data breach. (Photo Credits- Reuters)
    google-preferred-btn

    LastPass is a password management platform which recently said that hackers who accessed the company’s cloud-based storage environment illegally in August 2022 have a copy of consumer data. It stores passwords in a single app and reduces the reuse of passwords online.

    The Computer Emergency Response Team (CERT-In) issued an advisory in the wake of this data breach. It warned Indian users that their accounts could be compromised due to the phishing attacks that cybercriminals undertake.

    Karim Toubba, the CEO of LastPass provided an update last week of an update of a hacking incident that occurred back in August 2022. He said that it was found by the company that an unknown threat actor stole source code after accessing a cloud-based storage environment and later used it to target another employee of the company.

    He also noticed that the cloud storage access keys and dual storage access keys were obtained by the hackers that were “used to access and decrypt some storage volumes within the cloud-based storage service.” It was also said by the company that information was copied by the threat actor that included company names, end-user names, billing addresses, IP addresses, and telephone numbers of the customers who accessed the services of LastPass.

    The company however said that with 256-0-bit AES encryption the data has been secured. Since the data is encrypted the threat actors may use “brute force” to guess the target audience and master password with credential stuffing and phishing attacks, says LastPass.

    An advisory was also issued by the Indian cyber agency on a vulnerability in the products of NetApp OnCommand Insight which could allow an attacker to bypass the security restrictions and reach the targeted system. Attackers could exploit this vulnerability by sending a request and if it is successful then the attackers can perform the operations. Cyberattacks and crimes online are on the rise and such incidents leading to advisories for users can be a small step of prevention.

    ALSO READ | Preventing digital fraud: Why conversations on cybersecurity should take precedence in the banking space

    ALSO READ | How to protect yourself against online financial frauds?

    TOPICS
    Technology
    Technology news

    Get live Share Market updates, Stock Market Quotes, and the latest India News and business news on Financial Express. Download the Financial Express App for the latest finance news.

    This article was first uploaded on December twenty-nine, twenty twenty-two, at fifty-nine minutes past five in the evening.

    Related News

    shorts
    What does a $1 trillion salary mean – What can it buy and how rich does it make you?
    What does a $1 trillion salary mean – What can it buy and how rich does it make you?
    Life1 hr ago

    Elon Musk, CEO of Tesla, is expected to become the first trillionaire in the world due to a new pay grade adding 423.7 million shares worth $1 trillion to his paycheck. This would make him wealthier than entire nations and have a major impact on various sectors, global politics, and scientific research. He would also be 100 times richer than the Ambani family.

    View all shorts

    Photo Gallery

    Trending Topics

    income tax calculator
    defence stocks
    Gold rate today
    IPO
    sTOCK MARKET QUOTES
    sector stocks
    Stock screener
    group stocks
    ITR Guide

    Market Data
    Market Data