Tech Regulation

The UK Information Commissioner's Office fined password manager LastPass about $1.6 million for security failures tied to its 2022 breach that exposed a backup database, affecting roughly 1.6 million UK users. The regulator said LastPass lacked adequate technical and organizational controls, while the company said it has cooperated since 2022 and strengthened its platform; there is no evidence customer passwords were decrypted.