Scoopfeeds — Intelligent news, curated.
A popular password manager was hit by a hack. What you need to know—and how to keep your data safe
business

A popular password manager was hit by a hack. What you need to know—and how to keep your data safe

Fast Company · Jun 24, 2026, 7:30 PM

Last Pass, a password manager maker, is informing customers of a recent security breach at third-party market intelligence platform Klue, and how it impacts its customers, according to a recent blog post. A subsidiary of Boston-based Log Me In, Last Pass, which creates and stores complex passwords in encrypted wallets, is one of several cybersecurity companies affected by the Klue hack, which includes Gong, Jamf, Hacker One, Insurity, One Trust, Recorded Future, Snyk, Sprout Social, and Tanium, per TechCrunch. Here’s what to know. What happened? On June 12, Klue informed LastPass of the data breach, and upon immediately launching an investigation, learned that “an unauthorized actor was able to obtain OAuth tokens Klue held for many of its customers, including LastPass.” Klue’s platform integrates with both Salesforce and Gong systems. The hackers used these credentials to access LastPass customer data “within [its] Salesforce environment . . . and the exposed Klue OAuth tokens have since been rotated.” (Salesforce databases can be a target for hackers because many companies store customer information there, according to TechCrunch.) LastPass confirmed the hackers were able to steal sensitive customer data such as “names, phone numbers, email addresses, physical addresses, as well as support case data and sales-related data” from Klue. However, “LastPass products, services, and infrastructure were not impacted in any way, and customer vaults remain secure,” it says. Fast Company has reached out to LastPass for additional information. The incident comes just four years after LastPass’ previous data breach. In 2022, hackers stole its customers’ encrypted passwords, which resulted in a payout $24.5 million to those affected, per PCMag. What LastPass customers can do Lastpass recommends customers remain vigilant of potential phishing attacks or social engineering attempts, which could leverage exposed contact details. It also re

Article preview — originally published by Fast Company. Full story at the source.
Read full story on Fast Company → More top stories

More in business

Decrypt
Aave Token Could Climb 50x by End of 2030, Standard Chartered Says—Here's Why
Investing.com
Form 4 Hershey Co For: 24 June
Investing.com
Strong earthquake rocks Venezuela capital
Investing.com
BioCardia director Simon Stertzer buys $103,584 in common stock
Investing.com
Form 4 BridgeBio Pharma Inc For: 24 June
Aggregated and edited by the Scoop newsroom. We surface news from Fast Company alongside other reporting so you can compare coverage in one place. Editorial policy · Corrections · About Scoop