Security News LastPass breach comes back to haunt users as hackers steal $12 million in cryptocurrency

Viking

Viking

Level 26
Thread author
Verified
Honorary Member
Top Poster
Well-known
Oct 2, 2011
1,558
Content source
https://www.itpro.com/security/cyber-attacks/lastpass-breach-comes-back-to-haunt-users-as-hackers-steal-usd12-million-in-two-days
The hackers behind the LastPass breach are on a rampage two years after their initial attack

A major data breach at password manager firm LastPass in 2022 is still causing mayhem two years later, with cyber criminals using stolen information to carry out further attacks.

According to data collated by crypto investigator ZachXBT, hackers stole $12.38 million in cryptocurrency from LastPass users on 16 and 17 December.

The attackers drained nearly 150 individual victim addresses, according to the analysis, with ZachXBT noting the stolen money was quickly converted into different currencies and syphoned away.

“The stolen funds were swapped for ETH and transferred to various instant exchanges from Ethereum to Bitcoin,” ZachXBT wrote in his Telegram channel.

This activity is the most recent example of criminal activity linked to the 2022 LastPass breach, with cyber criminals stealing approximately $4.4 million from over 25 victims on 25 October 2023.

Breaking the news, ZachXBT urged readers to move their cryptocurrencies if they might have been impacted by the LastPass incident.

“I cannot stress this enough, if you believe you may have ever stored your seed phrase or keys in LastPass, migrate your crypto assets immediately.”

Jamie Moles, senior technical manager at ExtraHop, said the drawn out effects of cyber breaches are becoming all too familiar, noting it’s likely the true scale of the fallout associated with the incident is yet to be fully comprehended.

“This is just the most recent in an ongoing stream of crypto thefts affecting victims of the LastPass breach. With this new information coming to light two years on , we can assume we still don’t understand the full extent of the damage,” he explained.

“The long-tail effects of hacks on even the most sophisticated organisations underscores how important it is to get cybersecurity right in the first place. We know that there are going to be new exploits and unknown threats coming at enterprise and public sector organisations. Using signatures and rules to detect known attack vectors isn’t enough, and it hasn’t been for some time.”
Click to expand...
www.itpro.com

LastPass breach comes back to haunt users as hackers steal $12 million in cryptocurrency

The hackers behind the LastPass breach are on a rampage two years after their initial attack
www.itpro.com www.itpro.com
 
Last edited by a moderator:
  • Wow
  • Like
  • +Reputation
Reactions: Game Of Thrones, Victor M, Andy Ful and 7 others

Similar threads

Gandalf_The_Grey
    • Like
    • +Reputation
Security News Internet Archive hacked, data breach impacts 31 million users
Replies
1
Views
2,505
Security News
Gandalf_The_Grey
Gandalf_The_Grey
Gandalf_The_Grey
    • Wow
Security News Largest Retail Breach in History: 350 Million “Hot Topic” Customers’ Personal & Payment Data Exposed
Replies
2
Views
442
Security News
Gandalf_The_Grey
Gandalf_The_Grey
enaph
Privacy News Ireland Fines Meta €251 Million Over 2018 Facebook Data Breach
Replies
0
Views
75
Security News
enaph
enaph

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top