TheRegister's platform is a leading technology news website, offering insights into IT industry news, hardware reviews, and software updates. Through articles, analysis, and opinion pieces, TheRegister offers insights into cybersecurity threats, technology trends, and industry developments. Readers can stay updated with the latest news and analysis from the world of technology and IT business.

The Register

The UK's ICO fined LastPass £1.2 million for a 2022 breach that compromised data from 1.6 million UK users. The attack occurred in two stages: first, an attacker compromised a developer's MacBook and stole source code containing encrypted credentials; second, they exploited a Plex vulnerability on a senior DevOps engineer's personal PC to steal decryption keys. The breach exposed email addresses, phone numbers, names, and physical addresses, though passwords remain uncompromised. The fine resulted from LastPass's failure to implement adequate security measures, particularly its policy allowing staff to link personal and business accounts with the same master password, and delayed detection due to miscommunication during its separation from parent company GoTo.

LastPass hammered with £1.2M fine for 2022 breach fiasco