Representatives of LastPass, a password manager with 25 million users, confirm the breach.
Karim Tubba, LastPass CEO, said an unauthorized party stole "parts of the source code and some proprietary technical information from LastPass."
Hackers broke into the development servers used by employees to create and maintain the password manager, aided by a compromised LastPass developer account from two weeks ago.
Incident Response Services localized the breach, and LastPass says there is no evidence of further malicious activity. Tubba also confirmed that no evidence of access to any customer data or encrypted password vaults was found.