Published Dec 24, 2022

Celigo recommendations in response to LastPass data breach

Wayne Sisk

Wayne Sisk

On December 22, 2022, LastPass reported a data breach where LastPass customer password vaults were downloaded from a portion of their encrypted backups.

Celigo does not use LastPass inside our products, including the Celigo platform. The LastPass breach does not have any impact on the credentials stored inside Celigo or the credentials used to access Celigo itself.

Our employees use LastPass as our internal password management tool, and we have verified that Celigo’s vaults were not part of the breach, and have been assured by LastPass that Celigo is not included in the “at-risk data” of the breach.

This is a good reminder of the importance of using password best practices:

  1. Change or rotate the credentials in your web applications frequently.
  2. Use long, complex passwords or passphrases with a mix of letters, numbers, and symbols. Vary it with upper and lower case letters.
  3. Avoid recycling the same password across multiple applications.
  4. Use multi-factor authentication (MFA) whenever possible.

We take our role as a steward of your data very seriously. We will continue to monitor for any new developments regarding this vulnerability and will follow this message with updates as needed.

Happy Holidays!