Another LastPass hack has been disclosed, with non-password customer data accessed

LastPass has disclosed another security breach today, with this one disclosing customer information that thankfully doesn't include passwords.

Announced via a post on the official LastPass blog, unusual activity was detected in a third party cloud service utilized by both LastPass and its affiliate LogMeIn Resolve. Though the breach is still being actively investigated by the LastPass development team, LastPass CEO Karim Toubba assured that this breach did not include any passwords due to the service's "Zero Knowledge" security model.

There is no downtime planned due to this breach, and further details concerning the precise nature of what data was accessed was not disclosed. That said, the methods used to obtain the information were garnered in previous LastPass breach back in August of this year. The company has employed "enhanced security measures and monitoring capabilities" in order to prevent further attacks based off of this information.

As of this post, LastPass has not instructed any further steps for customers to take outside of its standard "How to Set Up" article.

Further coverage: LastPass Blog BleepingComputer