LastPass reached a settlement in principle in a class action suit filed after the password management company suffered a data breach in 2022 that allegedly affected millions of individual and corporate customers.
A cybersecurity incident compromised LastPass’ development environment, allowing a threat actor sufficient access to some user “vaults” that they could use a brute force attack to access customers’ personal information, according to the complaint filed in the US District Court for the District of Massachusetts. The parties will finalize the settlement within 45 days and ask the court to preliminarily approve the deal.
- Judge Patti B. Saris previously ...
Learn more about Bloomberg Law or Log In to keep reading:
See Breaking News in Context
Bloomberg Law provides trusted coverage of current events enhanced with legal analysis.
Already a subscriber?
Log in to keep reading or access research tools and resources.