GoTo, previously known as LogMeIn and the parent company of password manager LastPass, has admitted that hackers obtained users' encrypted backups in a recent hack.
GoTo Breach
Software provider GoTo revealed on Monday, Jan. 23, that a hacker had stolen encrypted backups for its Central, Pro, Join.me, Hamachi, and RemotelyAnywhere services.
What's worse is that the company found proof the perpetrator took an encryption key for a component of the encrypted backups. This only means that decrypting these backup data would expose sensitive client information, as reported by PCMag.
According to GoTo, the impacted data may include account usernames, salted and hashed passwords, certain Multi-Factor Authentication (MFA) settings, and some application settings and license information.
GoTo Rescue and GoToMyPC enable users to access a computer over the internet remotely. Unfortunately, the hacker acquired the MFA settings for a subset of those users.
GoTo has not yet disclosed the potential scale of the impacted user base. The enterprise claimed last year, however, that it served 800,000 clients. Products such as Goto Central and Pro are meant to let IT personnel manage their operations offsite. Hamachi is a hosted VPN service, whereas Join.me facilitates online meetings.
Read Also : PayPal Breach Reveals Customer Data, Including SSNs | What to Do Next if Your Account Is Hacked?
Follow-up Remedy
Customers' accounts that use GoTo products may be more vulnerable to attack due to the incident. As anyone would imagine, this is terrible news for anyone relying on GoTo's remote access software. Because of this, the organization has reissued new passwords and enabled MFA for impacted individuals.
To better safeguard their accounts, the firm contacts concerned clients personally to give further information and propose practical solutions.
"In addition, we are migrating their accounts onto an enhanced Identity Management Platform, which will provide additional security with more robust authentication and login-based security options," the company stated.
GoTo said that no sensitive information was lost or stolen because of the breach since the firm does not gather data such as dates of birth, home addresses, or Social Security numbers. Nonetheless, the hacking incident may cause customers to lose faith in the business.
Root Cause
A hacker gained access to a cloud storage provider used by both GoTo and LastPass, which led to the issue.
LastPass' breach was so severe that the firm lost customers' data encryption vaults to the hacker, along with a plethora of other unprotected personal data about users.
LastPass passwords are encrypted, but a hacker who obtains the vault master passwords might possibly decode the data. There are two possible methods for accomplishing this goal: human guesswork and automated software.
While the individuals' unsecured personal information was taken, they may be subjected to phishing attempts, too.