When the firm revealed the second security breach in December, it said that malicious actors exploited information gathered from the first incident to gain access to its cloud service. It also revealed that the hackers stole a large amount of sensitive data, including Amazon S3 buckets. The hackers required decryption keys stored in a “very limited set of shared files in a LastPass password management vault” to access the data contained in those buckets. That’s why the bad guys went for one of the company’s four DevOps engineers, who had access to the keys required to open the cloud storage.
