What happens when a trusted password manager has its data breached and how should its users react? Data breaches are now more common than most other cybersecurity crimes, and are how cyber criminals gain access to users' accounts. How can we help with the consequences of stolen passwords?
OneLogin is reporting its recent data breach was made possible when a hacker obtained access to a set of Amazon Web Service keys through a third-party vendor. With this, the hacker was enabled entry into its U.S. data center compromising all its records. The password management firm said the stolen keys gave the intruder access through the AWS API, something industry experts say could have been averted if OneLogin maintained control of its keys. There could possibly be a design flaw, some say.