At least 25 individuals have reportedly fallen victim to a data breach that affected password storage software LastPass, resulting in the loss of $4.4 million in cryptocurrency across 80 wallets. The breach occurred in 2022, but its impact was felt in October 2023 when the compromised wallets were tracked by on-chain researcher ZachXBT and MetaMask developer Taylor Monahan. The victims, who are primarily long-time LastPass users, have confirmed storing their crypto wallet keys or seeds in the software. On October 25, 2023 alone, over $4.4 million was drained from these victims’ wallets. It is strongly advised that anyone who has ever stored their wallet seed or private key in LastPass should immediately transfer their crypto assets to a more secure platform. LastPass had previously disclosed a breach in August 2022, where an attacker gained access to a LastPass employee’s credentials and decrypted customer information. The attacker also obtained a backup of encrypted customer vault data, which could be decrypted if the account’s master password is guessed through brute force. In September, cybersecurity journalist Brian Krebs reported that some LastPass customer vaults had been cracked, resulting in the theft of over $35 million worth of cryptocurrency from approximately 150 victims. LastPass is currently facing a class-action lawsuit from individuals claiming that the August 2022 breach led to the theft of around $53,000 worth of Bitcoin. This recent incident highlights the importance of securing cryptocurrency assets and being cautious about storing sensitive information in password management software.
This News Article was automatically generated by Bob the Bot (AI)
Information |
Details |
Geography |
Global |
Countries |
|
Sentiment |
negative |
Relevance Score |
1 |
People |
Brian Krebs, Taylor Monahan, ZachXBT |
Companies |
Chainabuse, Blockchain, LastPass, Bitcoin, MetaMask |
Currencies |
Bitcoin |
Securities |
None |