LastPass agreed to pay at least $8.2 million to settle allegations that the password manager failed to protect users’ personal information, as well as offer up to $16.25 million for cryptocurrency reimbursement.
The password manager denies wrongdoing, and disputes the plaintiffs’ characterization of the 2022 data breach. The settlement would provide consumers and businesses statutory payments and options for loss reimbursement, according to the motion for preliminary approval submitted to the US District Court for the District of Massachusetts Tuesday.
“The threat actors employed a multi-step intrusion process to gain access to LastPass’s development environment, obtain cloud-storage access keys, and ...
Learn more about Bloomberg Law or Log In to keep reading:
See Breaking News in Context
Bloomberg Law provides trusted coverage of current events enhanced with legal analysis.
Already a subscriber?
Log in to keep reading or access research tools and resources.