Ironically, if they’d used a LastPass generated pass on plex, it would have been... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		hsbauauvhabzb on Feb 28, 2023 \| parent \| context \| favorite \| on: LastPass says DevOps engineer’s hacked computer le... Ironically, if they’d used a LastPass generated pass on plex, it would have been infeasible to crack the breached plex password. Using LastPass would literally have prevented a breach of LastPass.

krakenschmidt on Feb 28, 2023 [–]

No, they breached Plex with a vulnerability. Then they installed a keylogger. Edit: Is there a source about how exactly they got into Plex? I assumed it was via port scanning plus some Plex vulnerability, not that they guess the Plex password.

Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact