ICO have fined password manager provider LastPass UK Ltd £1.2 million following a 2022 data breach that compromised the personal information of up to 1.6 million of its UK users. They found that LastPass failed to implement sufficiently robust technical and security measures, which ultimately enabled a hacker to gain unauthorised access to its backup database. There is no evidence that hackers were able to unencrypt customer passwords as these are stored locally on customer devices and not by LastPass. The incidents occurred in August 2022 when a hacker gained…
Read MorePassword manager provider fined £1.2m by ICO for data breach affecting up to 1.6 million people in the UK
