The repercussions of the LastPass hack in 2022 continue, with reports of millions of additional dollars stolen.
The consequences of the LastPass security breach persist, leading to a new attack.
Since the significant LastPass hack in 2022, a cybercriminal has continued their illicit activity using stolen information to execute a new attack, resulting in the theft of $5.36 million from 40 cryptocurrency wallets. This attack, which occurred in August 2022, allowed the perpetrator to access sensitive information that led to the compromise of a cloud storage environment containing client keys, API tokens, multi-factor authentication (MFA) seeds, and encrypted password vaults.
Despite the vaults being protected by encryption, the use of weak, reused, or previously leaked master passwords may have facilitated the attacker’s access, which could explain the recent waves of cryptocurrency thefts targeting LastPass users since last year.
A blockchain specialist known as ZachXBT has linked the most recent theft to the LastPass security breach, indicating through a Telegram message that this incident is just one of many thefts affecting victims of the attack. In October 2023, a theft of $4.4 million was reported, followed by another theft of $6.2 million in February 2024.
ZachXBT communicated that the stolen funds were converted to ETH and transferred to various instant exchanges from Ethereum to Bitcoin. In his message, he emphasized the urgency of migrating cryptocurrency assets if a seed phrase or keys were ever stored in LastPass.
Additionally, it had been reported that between the attack in August and December 2022, over $35 million was stolen from approximately 150 victims affected by the LastPass security breach.
These incidents highlight the need to use unique passwords for each account and follow recommended security standards by using reliable password generators. Even if one has switched to another password management provider since the LastPass incident, compromised passwords that continue to be in use remain at risk, as shown in these cryptocurrency thefts. It is also recommended to use robust authentication apps that include biometric verification to protect accounts, even if an attacker has access to the username and password.
